|Max CVSS||9.3||Min CVSS||5.0||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and < 14.4.0.
|12-05-2022 - 15:01||08-06-2020 - 14:15|
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
|12-05-2022 - 15:01||24-07-2020 - 22:15|
In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings e
|12-05-2022 - 15:00||03-06-2020 - 23:15|
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.
|26-04-2022 - 17:05||12-03-2020 - 19:15|
minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload.
|22-04-2022 - 19:02||11-03-2020 - 23:15|