CVE-2025-32996

MEDIUM4.0EPSS 0.06%

http-proxy-middleware can call writeBody twice because "else if" is not used

發布日:2025/4/15修改日:2026/2/4

也稱為:GHSA-4www-5p9h-95mhCGA-5gg2-gpxx-53gq

描述

In http-proxy-middleware before 2.0.8 and 3.x before 3.0.4, writeBody can be called twice because "else if" is not used.

受影響套件(1)

npm/http-proxy-middleware>= 1.3.0, < 2.0.8

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM4.0	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

參考連結(6)