Количество 2
Количество 2
CVE-2021-32619
Deno is a runtime for JavaScript and TypeScript that uses V8 and is built in Rust. In Deno versions 1.5.0 to 1.10.1, modules that are dynamically imported through `import()` or `new Worker` might have been able to bypass network and file system permission checks when statically importing other modules. The vulnerability has been patched in Deno release 1.10.2.
GHSA-xpwj-7v8q-mcgj
Deno's static imports inside dynamically imported modules do not adhere to permission checks
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-32619 Deno is a runtime for JavaScript and TypeScript that uses V8 and is built in Rust. In Deno versions 1.5.0 to 1.10.1, modules that are dynamically imported through `import()` or `new Worker` might have been able to bypass network and file system permission checks when statically importing other modules. The vulnerability has been patched in Deno release 1.10.2. | CVSS3: 9.8 | 0% Низкий | больше 4 лет назад |
| GHSA-xpwj-7v8q-mcgj Deno's static imports inside dynamically imported modules do not adhere to permission checks | CVSS3: 9.8 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу