CVE-2016-10618

2018-04-2600:00:00

CWE-311

hackerone

www.cve.org

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.6%

JSON

node-browser is a wrapper webdriver by nodejs. node-browser downloads resources over HTTP, which leaves it vulnerable to MITM attacks.

CNA Affected

[
  {
    "product": "node-browser node module",
    "vendor": "HackerOne",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]

References

nodesecurity.io/advisories/214