Security Advisory

CVE-2024-38372

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-08 20:25:59

Last updated 2024-08-28 15:02:48

Assigner GitHub_M

State PUBLISHED

Description

Undici is an HTTP/1.1 client, written from scratch for Node.js. Depending on network and process conditions of a `fetch()` request, `response.arrayBuffer()` might include portion of memory from the Node.js process. This has been patched in v6.19.2.

← Browse all CVEs View on cve.org ↗