3 matches found
@aeternity/aepp-sdk (=0.25.0-0.1.0), @berrywallet/core (>=0.1.0 <=0.2.1) +182 more potentially affected by CVE-2022-25324 via bignum (>=0.10.2 <=0.13.1)
bignum NPM version =0.10.2, =0.1.0, =2.0.0, =1.0.2, =0.0.1, =1.1.1, =1.0.0, =0.5.0, =1.0.0, =0.0.2, =1.0.0, =1.0.1 and more Source cves: CVE-2022-25324 Source advisory: OSV:GHSA-6429-3G3W-6MW5...
CVE-2022-25324
CVE-2022-25324 affects the npm package bignum. The DoS arises from a type-check exception in V8 when verifying the second argument to the powm function, causing crashes that bypass Node try/catch blocks. Affected versions are not fixed by any known version; remediation is not available. Related a...
1664 (>=0.2.1 <=0.2.3), @aeternity/aepp-sdk (=0.25.0-0.1.0) +272 more potentially affected by CVE-2022-25324 via bignum (>=0.10.2 <=0.9.3)
bignum NPM version =0.10.2, =0.2.1, =0.1.0, =2.0.0, =1.0.2, =0.0.1, =1.1.1, =0.4.3, =1.0.0, =0.5.0, =1.0.0, =0.0.2, =1.1.0 and more Source cves: CVE-2022-25324 Source advisory: SNYK:JS-BIGNUM-2388581...