Vulnerabilities > Nodejs > Undici

DATE CVE VULNERABILITY TITLE RISK
2022-07-19 CVE-2022-31150 Unspecified vulnerability in Nodejs Undici
undici is an HTTP/1.1 client, written from scratch for Node.js.
network
low complexity
nodejs
6.5
2022-07-14 CVE-2022-32210 Improper Certificate Validation vulnerability in Nodejs Undici
`Undici.ProxyAgent` never verifies the remote server's certificate, and always exposes all request & response data to the proxy.
network
high complexity
nodejs CWE-295
6.5