Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor React-native-fast-image Project Subscribe
Filtered by product React-native-fast-image
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7696 1 React-native-fast-image Project 1 React-native-fast-image 2020-07-22 5.0 MEDIUM 5.3 MEDIUM
This affects all versions of package react-native-fast-image. When an image with source={{uri: "...", headers: { host: "somehost.com", authorization: "..." }} is loaded, all other subsequent images will use the same headers, this can lead to signing credentials or other session tokens being leaked to other servers.