Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-42282

Disclosure Date: February 08, 2024 (last updated February 26, 2025)
The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally routable via isPublic.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0