A critical race condition in Angular's server-side rendering (SSR) platform allows attackers to leak sensitive data between user sessions, including authentication tokens. This vulnerability is particularly dangerous for high-traffic applications and requires patching Angular versions 18-20. Mitigation options include disabling SSR or applying specific API changes until updates are applied.
Latest mentioned: 09-11
Earliest mentioned: 09-11