redbird@0.7.0 vulnerabilities

A reverse proxy with support for dynamic tables

Direct Vulnerabilities

Known vulnerabilities in the redbird package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Insufficient Validation

redbird is a complete library to build dynamic reverse proxies with the speed and robustness of http-proxy.

Affected versions of this package are vulnerable to Insufficient Validation. There is no option in lib/proxy.js which would allow for disabling TLS1.0 connections, which are considered to be vulnerable and deprecated.

How to fix Insufficient Validation?

Upgrade redbird to version 0.9.1 or higher.

<0.9.1