Security Advisory

CVE-2022-25881

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-31 05:00:01
Last updated 2025-03-27 17:16:32
Assigner snyk
State PUBLISHED

Description

This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.