Lucene search

K
osvGoogleOSV:CVE-2020-8252
HistorySep 18, 2020 - 9:15 p.m.

CVE-2020-8252

2020-09-1821:15:13
Google
osv.dev
13

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

19.0%

The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js incorrectly determined the buffer size which can result in a buffer overflow if the resolved path is longer than 256 bytes.