CVE-2025-7339Improper Handling of Unexpected Data Type in On-headers

CWE-241Improper Handling of Unexpected Data TypeCWE-121Stack-based Buffer OverflowCWE-825Expired Pointer DereferenceCWE-1021UI Misrepresentation / Clickjacking20 documents7 sources
Severity
3.4LOWNVD
EPSS
0.0%
top 98.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Jshttp On-headersDebian Node-on-headersMsrc Azl3 Python-tensorboard 2.16.2-6 ON Azure Linux 3.0+2 more
Timeline
PublishedJul 17
Latest updateNov 14

Description

on-headers is a node.js middleware for listening to when a response writes headers. A bug in on-headers versions `<1.1.0` may result in response headers being inadvertently modified when an array is passed to `response.writeHead()`. Users should upgrade to version 1.1.0 to receive a patch. Uses are strongly encouraged to upgrade to `1.1.0`, but this issue can be worked around by passing an object to `response.writeHead()` rather than an array.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:NExploitability: 0.8 | Impact: 2.5

Affected Packages6 packages

debiandebian/node-on-headers< node-on-headers 1.0.2-4 (forky)
CVEListV5jshttp/on-headers< 1.1.0
npmjshttp/on-headers< 1.1.0

🔴Vulnerability Details

3
OSV
CVE-2025-7339: on-headers is a node2025-07-17
OSV
on-headers is vulnerable to http response header manipulation2025-07-17
GHSA
on-headers is vulnerable to http response header manipulation2025-07-17

📋Vendor Advisories

16
Red Hat
chromium-browser: Inappropriate implementation in Compositing2025-11-14
Oracle
Oracle Oracle Communications Applications Risk Matrix: Microservices (on-headers) — CVE-2025-73392025-10-15
Red Hat
chromium-browser: Use after free in WebRTC2025-09-24
Microsoft
Chromium: CVE-2025-10501 Use after free in WebRTC2025-09-09
Microsoft
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability2025-09-09