Описание
Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.4.11+~2.4.0-2ubuntu1 |
| esm-apps/bionic | released | 2.4.9-1ubuntu0.1~esm1 |
| esm-apps/focal | released | 2.4.11-2ubuntu0.1~esm1 |
| esm-apps/jammy | released | 2.4.11+~2.4.0-1ubuntu0.1 |
| esm-apps/noble | released | 2.4.11+~2.4.0-2+deb13u1build0.24.04.1 |
| jammy | released | 2.4.11+~2.4.0-1ubuntu0.1 |
| noble | released | 2.4.11+~2.4.0-2+deb13u1build0.24.04.1 |
| plucky | released | 2.4.11+~2.4.0-2+deb13u1build0.25.04.1 |
| upstream | released | 2.4.12 |
Показывать по
10
9.1 Critical
CVSS3
Связанные уязвимости
CVSS3: 7.7
redhat
2 месяца назад
Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.
CVSS3: 9.1
nvd
2 месяца назад
Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.
msrc
2 месяца назад
Missing type checks leading to hash rewind and passing on crafted data
CVSS3: 9.1
debian
2 месяца назад
Improper Input Validation vulnerability in sha.js allows Input Data Ma ...
CVSS3: 9.1
github
2 месяца назад
sha.js is missing type checks leading to hash rewind and passing on crafted data
9.1 Critical
CVSS3