Rewterz Threat Alert – APT29 Exploited The Windows Credential Roaming to Compromise A Diplomatic Entity
November 12, 2022Rewterz Threat Alert – Donot APT Group – Active IOCs
November 14, 2022Rewterz Threat Alert – APT29 Exploited The Windows Credential Roaming to Compromise A Diplomatic Entity
November 12, 2022Rewterz Threat Alert – Donot APT Group – Active IOCs
November 14, 2022Severity
High
Analysis Summary
CVE-2022-35256
Node.js is vulnerable to HTTP request smuggling, caused by the failure to correctly handle header fields that are not terminated with CLRF by the llhttp parser in the http module. A remote attacker could send a specially-crafted request to lead to HTTP Request Smuggling (HRS). An attacker could exploit this vulnerability to poison the web cache, bypass web application firewall protection, and conduct XSS attacks.
Impact
Gain Access
Indicators Of Compromise
CVE
- CVE-2022-35256
Affected Vendors
Node.js
Affected Products
- Node.js 14.0
- Node.js 16.0
- Node.js 18.0
Remediation
Upgrade to the latest version of Node.js, available from the Node.js Website.