CVE-2026-44373
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
5.3 / 10
Vulnerability Description
Nitro has a proxy scope bypass via percent-encoded path traversal in `routeRules`
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
npm
Product
nitro
External References
- https://github.com/nitrojs/nitro/security/advisories/GHSA-5w89-w975-hf9q
- https://github.com/nitrojs/nitro/pull/4222
- https://github.com/nitrojs/nitro/pull/4223
- https://github.com/nitrojs/nitro/releases/tag/v2.13.4
- https://github.com/nitrojs/nitro/releases/tag/v3.0.260429-beta
- https://github.com/advisories/GHSA-5w89-w975-hf9q
Discussion (0)
Add Comment
No comments yet. Be the first!