Lucene search
K

8 matches found

OSV
OSV
added 2026/06/04 7:40 p.m.4 views

ROOT-APP-NPM-CVE-2022-41940 CVE-2022-41940 in @rootio/engine.io - Patched by Root

Root has patched CVE-2022-41940 in the @rootio/engine.io package for Root:npm. Multiple fixed versions available...

7.1CVSS5.4AI score0.01939EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/17 3:25 p.m.51 views

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Summary IBM Cloud Pak for Security includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version of Cloud Pak for Security...

7.5CVSS7.5AI score0.0276EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/01 4:56 p.m.46 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to denial of service due to CVE-2022-41940

Summary Node.js module Engine.IO is used by IBM App Connect Enterprise Certified Container for communication between the DesignerAuthoring web console and the process running the DesignerAuthoring service. IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable...

7.1CVSS6.5AI score0.01939EPSS
Exploits1Affected Software1
Circl
Circl
added 2022/11/22 7:12 a.m.7 views

CVE-2022-41940

creationtimestamp| type| source ---|---|--- 2022-11-22 07:12:49+00:00| seen| https://t.me/cibsecurity/53304...

7.1CVSS7AI score0.01939EPSS
Exploits1References1
CVE
CVE
added 2022/11/22 12:0 a.m.142 views

CVE-2022-41940

CVE-2022-41940 affects Engine.IO, the transport layer used by Socket.IO. A specially crafted HTTP request can trigger an uncaught exception on the Engine.IO server, causing the Node.js process to crash and resulting in a denial of service. Affected are Engine.IO versions prior to patches released...

7.1CVSS6.5AI score0.01939EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/11/22 12:0 a.m.34 views

CVE-2022-41940 Uncaught exception in engine.io

Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional communication layer for Socket.IO. A specially crafted HTTP request can trigger an uncaught exception on the Engine.IO server, thus killing the Node.js process. This impacts all the users of the engine.io...

7.1CVSS7AI score0.01939EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/11/21 11:55 p.m.4 views

10cartsharing (>=1.0.0 <=1.0.3), 1api (>=0.0.1 <=0.0.2) +7063 more potentially affected by CVE-2022-41940 via engine.io (>=0.1.0 <=3.5.0)

engine.io NPM version =0.1.0, =1.0.0, =0.0.1, =0.1.0, =1.0.2, =1.0.0-RC.1, =0.1.0, =1.0.0, =4.11.25, =0.1.4, =0.0.15, =0.0.16 and more Source cves: CVE-2022-41940 Source advisory: OSV:GHSA-R7QP-CFHV-P84W...

7.1CVSS6.8AI score0.01939EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/11/21 11:55 p.m.6 views

0.edsql (>=1.0.49 <=1.0.50), 10secondsofcode-custom (=1.0.0) +1527 more potentially affected by CVE-2022-41940 via engine.io (>=4.0.6 <=6.1.3)

engine.io NPM version =4.0.6, =1.0.49, =1.0.0, =0.0.28, =1.0.1, =0.8.2, =1.0.0, =0.1.13, =0.0.4, =1.2.1, =1.0.1, =1.0.2 - @aaronconway7/create-gatsby-app =1.0.0 - @accio-cms/gatsby-starter-accio =0.0.1 - @achilleskal/awesome-blog =1.0.0 and more Source cves: CVE-2022-41940 Source advisory:...

7.1CVSS6.8AI score0.01939EPSS
Exploits1
Rows per page
Query Builder