5 matches found
CVE-2020-7689
Data is truncated wrong when its length is greater than 255 bytes...
2max-express-authenticate (>=0.0.1 <=0.0.122), @0x18b2ee/parse-server (>=3.10.1 <=3.11.0) +2200 more potentially affected by CVE-2020-7689 via bcrypt (>=0.2.4 <=4.0.1)
bcrypt NPM version =0.2.4, =0.0.1, =3.10.1, =1.0.0, =0.0.1, =0.1.0-beta.0, =1.2.0, =1.0.30, =2.0.0, =2.0.1, =0.1.0, =1.0.0, =0.0.1, =0.0.1, =0.0.4 - @aifedespaix/fdp-api-libs =1.0.7 and more Source cves: CVE-2020-7689 Source advisory: OSV:GHSA-5WG4-74H6-Q47V...
CVE-2020-7689
Data is truncated wrong when its length is greater than 255 bytes...
CVE-2020-7689 Insecure Encryption
Data is truncated wrong when its length is greater than 255 bytes...
CVE-2020-7689
The CVE-2020-7689 issue affects the bcrypt.js npm package: before version 5.0.0, data is truncated when its input length exceeds 255 bytes, potentially compromising password handling. The exposed vulnerability is documented across multiple sources (npm advisory, Red Hat, OSV, CVE records). Remedi...