|Max CVSS||9.3||Min CVSS||5.5||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
|12-05-2022 - 15:01||24-07-2020 - 22:15|
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.
|26-04-2022 - 17:05||12-03-2020 - 19:15|
Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONT
|27-05-2021 - 16:21||13-08-2019 - 21:15|
Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and cre
|09-10-2020 - 13:36||13-12-2019 - 01:15|