CVE-2024-24758 | Undici Header Proxy-Authorization unknown vulnerability

Posted by Angelo Barbosa | Feb 16, 2024 | CVE

A vulnerability was found in Undici and classified as problematic. Affected by this issue is some unknown functionality of the component Header Handler. The manipulation of the argument Proxy-Authorization leads to permissive cross-domain policy with untrusted domains.

This vulnerability is handled as CVE-2024-24758. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24758 | Undici Header Proxy-Authorization unknown vulnerability

Related Posts

CVE-2023-52583 | Linux Kernel up to 6.7.3 ceph dget deadlock

CVE-2024-28075 | SolarWinds Access Rights Manager up to 2023.2.3 Service deserialization

CVE-2023-51094 | Tenda M3 1.0.0.12(4856) TendaTelnet Privilege Escalation

CVE-2024-21876 | Enphase IQ Gateway prior 8.2.4225 URL Parameter path traversal