Описание
Versions less than 0.0.6 of the Node.js stringstream module are vulnerable to an out-of-bounds read because of allocation of uninitialized buffers when a number is passed in the input stream (when using Node.js 4.x).
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | |
| esm-apps/jammy | not-affected | |
| esm-apps/noble | not-affected | |
| esm-infra-legacy/trusty | DNE | |
| focal | not-affected | |
| groovy | not-affected | |
| hirsute | not-affected |
Показывать по
EPSS
5.8 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Versions less than 0.0.6 of the Node.js stringstream module are vulnerable to an out-of-bounds read because of allocation of uninitialized buffers when a number is passed in the input stream (when using Node.js 4.x).
Versions less than 0.0.6 of the Node.js stringstream module are vulnerable to an out-of-bounds read because of allocation of uninitialized buffers when a number is passed in the input stream (when using Node.js 4.x).
Versions less than 0.0.6 of the Node.js stringstream module are vulner ...
EPSS
5.8 Medium
CVSS2
6.5 Medium
CVSS3