CVE-2022-36127: Apache SkyWalking NodeJS Agent can lose availability if header includes illegal SkyWalking header
(updated )
A vulnerability in Apache SkyWalking NodeJS Agent prior to 0.5.1. The vulnerability will cause NodeJS services that has this agent installed to be unavailable if the OAP is unhealthy and NodeJS agent can’t establish the connection.
References
Detect and mitigate CVE-2022-36127 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →