#wrapper *:not(#noScriptAlert) { opacity: 0.75; } #noScriptAlert { display: block; }

Please turn on your JavaScript for this page to function normally.

Help Net Security

October 4, 2022

HTTP request smuggling vulnerability in Node.js (CVE-2022-35256)

In this Help Net Security video, Austin Jones, Principal Software Engineer at ThreatX, explains what HTTP request smuggling is, and discusses a recently uncovered HTTP request smuggling vulnerability in Node.js (CVE-2022-35256).

This vulnerability allows an attacker to bypass security controls on the target server to conduct any nefarious activities.

More about

Node.js
ThreatX
video
vulnerability

Don't miss

Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!
LastPass users targeted by vishing attackers
Protobom: Open-source software supply chain tool
The key pillars of domain security
Ivanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204)

HTTP request smuggling vulnerability in Node.js (CVE-2022-35256)

Featured news

Sponsored

Don't miss