Low severity3.7NVD Advisory· Published Jun 17, 2026
undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header
CVE-2026-11525
Description
undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header
Affected products
2- Package: https://npmjs.com/package/undici
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
News mentions
0No linked articles in our index yet.