AZL-70997 CVE-2018-19827 affecting package reaper for versions less than 3.1.1-21

🗓️ 03 Dec 2018 19:29:00Reported by GoogleType

osv🔗 osv.dev👁 1 Views

AZL-70997 CVE-2018-19827: reaper below 3.1.1-21; LibSass 3.5.5 has a use-after-free in SharedPtr that may crash.

Reporter	Title	Published	Views	Family All 47
IBM Security Bulletins	Security Bulletin: IBM Security Verify Information Queue uses a Node.js package with multiple vulnerabilities	10 Feb 202116:34	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Node.js affect IBM Cloud Pak System.	16 Aug 202217:05	–	ibm
IBM Security Bulletins	Security Bulletin: Mutiple Vulnerabilties in Open Source packages affects IBM Watson Machine Learning Accelerator on Cloud Pak for Data	6 Dec 202316:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar User Behavior Analytics is vulnerable to components with known vulnerabilities	30 Mar 202316:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vulnerable to multiple vulnerabilities	12 Dec 202317:28	–	ibm
IBM Security Bulletins	Security Bulletin: OSS security Scan issues for Concerto installer.	8 Dec 202006:37	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Dependency Vulnerability	15 May 202317:51	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities	6 Dec 202316:20	–	ibm
IBM Security Bulletins	Security Bulletin: Medium/low severity vulnerabilities in libraries used by IBM Spectrum Discover (libraries of libraries)	27 Apr 202222:51	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Security issues for NPS console.	15 Dec 202007:03	–	ibm

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-19827

21 Apr 2026 04:36Current

7.4High risk

Vulners AI Score7.4

CVSS 38.8

EPSS0.00436