Advisory Database
  • Advisories
  • Dependency Scanning
  1. npm
  2. ›
  3. llhttp
  4. ›
  5. CVE-2022-32215

CVE-2022-32215: Not vulnerable

July 14, 2022 (updated November 7, 2023)

Not vulnerable

References

  • hackerone.com/reports/1501679
  • nodejs.org/en/blog/vulnerability/july-2022-security-releases/
  • nvd.nist.gov/vuln/detail/CVE-2022-32215

Detect and mitigate CVE-2022-32215 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

All versions starting from 14.0.0 before 14.20.1, all versions starting from 16.0.0 before 16.17.1, all versions starting from 18.0.0 before 18.9.1

Solution

Unfortunately, there is no solution available yet.

Impact 6.5 MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Learn more about CVSS

Weakness

  • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Source file

npm/llhttp/CVE-2022-32215.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Fri, 22 Nov 2024 12:14:29 +0000.