Exploit for #VU49253 HTTP request smuggling in Node.js


Published: 2021-01-05

Vulnerability identifier: #VU49253

Vulnerability risk: Medium

CVSSv3.1: 5.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-8287

CWE-ID: CWE-444

Exploitation vector: Network

Exploits in database: 1

Impact: Information disclosure and data manipulation

Vulnerable software:
Node.js
Server applications / Web servers

Vendor: Node.js Foundation