virus logo FortiClient Vulnerability

Nodejs CVE-2021-43803 Input Validation Bypass Vulnerability

description-logoDescription

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.

affected-products-logoAffected Applications

Nodejs

CVE References

CVE-2021-43803

Other References

https://nodejs.org/en/blog/vulnerability/
ID 69898
Created Dec 19, 2021
Description
Updated		 Dec 15, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Node.js Foundation
Patch manual
Application Nodejs