Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/http-proxy-middleware@2.0.5
Typenpm
Namespace
Namehttp-proxy-middleware
Version2.0.5
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.0.9
Latest_non_vulnerable_version3.0.5
Affected_by_vulnerabilities
0
url VCID-aeuz-jzwr-zucw
vulnerability_id VCID-aeuz-jzwr-zucw
summary Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21536.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21536.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-21536
reference_id
reference_type
scores
0
value 0.00354
scoring_system epss
scoring_elements 0.58237
published_at 2026-06-13T12:55:00Z
1
value 0.00354
scoring_system epss
scoring_elements 0.5822
published_at 2026-06-12T12:55:00Z
2
value 0.00354
scoring_system epss
scoring_elements 0.58225
published_at 2026-06-14T12:55:00Z
3
value 0.00354
scoring_system epss
scoring_elements 0.58107
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-21536
2
reference_url https://github.com/chimurai/http-proxy-middleware
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/chimurai/http-proxy-middleware
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-21536
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-21536
4
reference_url https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5
reference_id 0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-21T15:20:45Z/
url https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2319884
reference_id 2319884
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2319884
6
reference_url https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a
reference_id 28be67266d82a53708ed59ce5dc3c94a
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-21T15:20:45Z/
url https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a
7
reference_url https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22
reference_id 788b21e4aff38332d6319557d4a5b1b13b1f9a22
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-21T15:20:45Z/
url https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22
8
reference_url https://github.com/advisories/GHSA-c7qv-q95q-8v27
reference_id GHSA-c7qv-q95q-8v27
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c7qv-q95q-8v27
9
reference_url https://access.redhat.com/errata/RHSA-2024:10917
reference_id RHSA-2024:10917
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10917
10
reference_url https://access.redhat.com/errata/RHSA-2024:10962
reference_id RHSA-2024:10962
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10962
11
reference_url https://access.redhat.com/errata/RHSA-2024:11255
reference_id RHSA-2024:11255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:11255
12
reference_url https://access.redhat.com/errata/RHSA-2024:11256
reference_id RHSA-2024:11256
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:11256
13
reference_url https://access.redhat.com/errata/RHSA-2024:9627
reference_id RHSA-2024:9627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:9627
14
reference_url https://access.redhat.com/errata/RHSA-2025:10853
reference_id RHSA-2025:10853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10853
15
reference_url https://access.redhat.com/errata/RHSA-2025:1249
reference_id RHSA-2025:1249
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1249
16
reference_url https://access.redhat.com/errata/RHSA-2025:3928
reference_id RHSA-2025:3928
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3928
17
reference_url https://access.redhat.com/errata/RHSA-2025:3929
reference_id RHSA-2025:3929
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3929
18
reference_url https://access.redhat.com/errata/RHSA-2025:3930
reference_id RHSA-2025:3930
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3930
19
reference_url https://access.redhat.com/errata/RHSA-2025:4511
reference_id RHSA-2025:4511
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:4511
20
reference_url https://access.redhat.com/errata/RHSA-2025:8059
reference_id RHSA-2025:8059
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8059
21
reference_url https://access.redhat.com/errata/RHSA-2025:8233
reference_id RHSA-2025:8233
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8233
22
reference_url https://access.redhat.com/errata/RHSA-2025:8479
reference_id RHSA-2025:8479
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8479
23
reference_url https://access.redhat.com/errata/RHSA-2025:8510
reference_id RHSA-2025:8510
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8510
24
reference_url https://access.redhat.com/errata/RHSA-2025:8512
reference_id RHSA-2025:8512
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8512
25
reference_url https://access.redhat.com/errata/RHSA-2025:8544
reference_id RHSA-2025:8544
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8544
26
reference_url https://access.redhat.com/errata/RHSA-2025:8551
reference_id RHSA-2025:8551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8551
27
reference_url https://access.redhat.com/errata/RHSA-2025:9294
reference_id RHSA-2025:9294
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9294
28
reference_url https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906
reference_id SNYK-JS-HTTPPROXYMIDDLEWARE-8229906
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-21T15:20:45Z/
url https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906
fixed_packages
0
url pkg:npm/http-proxy-middleware@2.0.7
purl pkg:npm/http-proxy-middleware@2.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-deza-pf5q-cqfy
1
vulnerability VCID-ff18-akd9-ebhu
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@2.0.7
1
url pkg:npm/http-proxy-middleware@3.0.3
purl pkg:npm/http-proxy-middleware@3.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-deza-pf5q-cqfy
1
vulnerability VCID-ff18-akd9-ebhu
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@3.0.3
aliases CVE-2024-21536, GHSA-c7qv-q95q-8v27
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aeuz-jzwr-zucw
1
url VCID-deza-pf5q-cqfy
vulnerability_id VCID-deza-pf5q-cqfy
summary In http-proxy-middleware before 2.0.9 and 3.x before 3.0.5, fixRequestBody proceeds even if bodyParser has failed.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32997.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32997.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32997
reference_id
reference_type
scores
0
value 0.00062
scoring_system epss
scoring_elements 0.19853
published_at 2026-06-14T12:55:00Z
1
value 0.00062
scoring_system epss
scoring_elements 0.19878
published_at 2026-06-13T12:55:00Z
2
value 0.00062
scoring_system epss
scoring_elements 0.19688
published_at 2026-06-11T12:55:00Z
3
value 0.00062
scoring_system epss
scoring_elements 0.19862
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32997
2
reference_url https://github.com/chimurai/http-proxy-middleware
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/chimurai/http-proxy-middleware
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-32997
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-32997
4
reference_url https://github.com/chimurai/http-proxy-middleware/pull/1096
reference_id 1096
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:54:06Z/
url https://github.com/chimurai/http-proxy-middleware/pull/1096
5
reference_url https://github.com/chimurai/http-proxy-middleware/commit/1bdccbeec243850f1d2bb50ea0ff2151e725d67e
reference_id 1bdccbeec243850f1d2bb50ea0ff2151e725d67e
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:54:06Z/
url https://github.com/chimurai/http-proxy-middleware/commit/1bdccbeec243850f1d2bb50ea0ff2151e725d67e
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2359628
reference_id 2359628
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2359628
7
reference_url https://github.com/advisories/GHSA-9gqv-wp59-fq42
reference_id GHSA-9gqv-wp59-fq42
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9gqv-wp59-fq42
8
reference_url https://access.redhat.com/errata/RHSA-2025:14090
reference_id RHSA-2025:14090
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14090
9
reference_url https://access.redhat.com/errata/RHSA-2025:9966
reference_id RHSA-2025:9966
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9966
10
reference_url https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.9
reference_id v2.0.9
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:54:06Z/
url https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.9
11
reference_url https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.5
reference_id v3.0.5
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:54:06Z/
url https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.5
fixed_packages
0
url pkg:npm/http-proxy-middleware@2.0.9
purl pkg:npm/http-proxy-middleware@2.0.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@2.0.9
1
url pkg:npm/http-proxy-middleware@3.0.5
purl pkg:npm/http-proxy-middleware@3.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@3.0.5
aliases CVE-2025-32997, GHSA-9gqv-wp59-fq42
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-deza-pf5q-cqfy
2
url VCID-ff18-akd9-ebhu
vulnerability_id VCID-ff18-akd9-ebhu
summary In http-proxy-middleware before 2.0.8 and 3.x before 3.0.4, writeBody can be called twice because "else if" is not used.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32996.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32996.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32996
reference_id
reference_type
scores
0
value 0.00058
scoring_system epss
scoring_elements 0.18576
published_at 2026-06-14T12:55:00Z
1
value 0.00058
scoring_system epss
scoring_elements 0.18598
published_at 2026-06-13T12:55:00Z
2
value 0.00058
scoring_system epss
scoring_elements 0.18416
published_at 2026-06-11T12:55:00Z
3
value 0.00058
scoring_system epss
scoring_elements 0.18581
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32996
2
reference_url https://github.com/chimurai/http-proxy-middleware
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/chimurai/http-proxy-middleware
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-32996
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-32996
4
reference_url https://github.com/chimurai/http-proxy-middleware/commit/020976044d113fc0bcbbaf995e91d05e2829a145
reference_id 020976044d113fc0bcbbaf995e91d05e2829a145
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:55:21Z/
url https://github.com/chimurai/http-proxy-middleware/commit/020976044d113fc0bcbbaf995e91d05e2829a145
5
reference_url https://github.com/chimurai/http-proxy-middleware/pull/1089
reference_id 1089
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:55:21Z/
url https://github.com/chimurai/http-proxy-middleware/pull/1089
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2359627
reference_id 2359627
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2359627
7
reference_url https://github.com/advisories/GHSA-4www-5p9h-95mh
reference_id GHSA-4www-5p9h-95mh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4www-5p9h-95mh
8
reference_url https://access.redhat.com/errata/RHSA-2025:14090
reference_id RHSA-2025:14090
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14090
9
reference_url https://access.redhat.com/errata/RHSA-2025:9966
reference_id RHSA-2025:9966
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9966
10
reference_url https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.8
reference_id v2.0.8
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:55:21Z/
url https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.8
11
reference_url https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.4
reference_id v3.0.4
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:55:21Z/
url https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.4
fixed_packages
0
url pkg:npm/http-proxy-middleware@2.0.8
purl pkg:npm/http-proxy-middleware@2.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-deza-pf5q-cqfy
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@2.0.8
1
url pkg:npm/http-proxy-middleware@3.0.4
purl pkg:npm/http-proxy-middleware@3.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-deza-pf5q-cqfy
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@3.0.4
aliases CVE-2025-32996, GHSA-4www-5p9h-95mh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ff18-akd9-ebhu
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/http-proxy-middleware@2.0.5