Http-Cache-Semantics Project: >> Http-Cache-Semantics Security Vulnerabilities
This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.
CVSS Score
5.3
EPSS Score
0.002
Published
2023-01-31