Information Exposure
CVE-2020-7696
5.3MEDIUM
Key Information:
- Status
- Vendor
- CVE Published:
- 17 July 2020
What is CVE-2020-7696?
This affects all versions of package react-native-fast-image. When an image with source={{uri: "...", headers: { host: "somehost.com", authorization: "..." }} is loaded, all other subsequent images will use the same headers, this can lead to signing credentials or other session tokens being leaked to other servers.
Affected Version(s)
react-native-fast-image 0
