Filtered by vendor Http-cache-semantics Project Subscriptions
Filtered by product Http-cache-semantics Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-25881 2 Http-cache-semantics Project, Redhat 8 Http-cache-semantics, Acm, Enterprise Linux and 5 more 2024-11-21 5.3 Medium
This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.