• caglararli@hotmail.com
  • 05386281520

CVE-2024-38372 | nodejs undici up to 6.19.1 response.arrayBuffer insertion of sensitive information into sent data (ID 3328)

Çağlar Arlı      -    5 Views

CVE-2024-38372 | nodejs undici up to 6.19.1 response.arrayBuffer insertion of sensitive information into sent data (ID 3328)

A vulnerability was found in nodejs undici up to 6.19.1. It has been classified as problematic. Affected is the function response.arrayBuffer. The manipulation leads to insertion of sensitive information into sent data. This vulnerability is traded as CVE-2024-38372. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.