engine.io Uncaught Exception vulnerability

🗓️ 03 May 2023 21:56:51Reported by GitHub Advisory DatabaseType

Engine.IO Uncaught Exception Vulnerability Impact and Patch

Reporter	Title	Published	Views	Family All 21
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities affecting Watson Knowledge Catalog for IBM Cloud Pak for Data	5 Jul 202318:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities	26 May 202314:13	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities present in IBM Answer Retrieval for Watson Discovery versions 2.11 and earlier	20 Jun 202315:24	–	ibm
IBM Security Bulletins	Security Bulletin: Decision Optimization in IBM Cloud Pak for Data is vulnerable to Engine.IO denial of service (CVE-2023-31125)	8 Sep 202308:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to denial of service due to [CVE-2023-31125]	1 Jun 202314:39	–	ibm
Circl	CVE-2023-31125	9 May 202300:47	–	circl
CNNVD	Engine.IO 安全漏洞	8 May 202300:00	–	cnnvd
CVE	CVE-2023-31125	8 May 202320:21	–	cve
Cvelist	CVE-2023-31125 Uncaught exception in engine.io	8 May 202320:21	–	cvelist
EUVD	EUVD-2023-1610	3 Oct 202520:07	–	euvd

Vulners

Node

socket engine.ioRange5.1.0–6.4.2npm

Source	Link
github	www.github.com/socketio/engine.io/security/advisories/GHSA-q9mw-68c2-j6m5
github	www.github.com/socketio/engine.io/commit/fc480b4f305e16fe5972cf337d055e598372dc44
github	www.github.com/socketio/engine.io/releases/tag/6.4.2
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-31125
security	www.security.netapp.com/advisory/ntap-20230622-0002
github	www.github.com/advisories/GHSA-q9mw-68c2-j6m5

13 Feb 2025 18:54Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5

EPSS0.01086

SSVC