4 matches found
@certd/commercial-core (>=1.25.9 <=1.41.2), @certd/lib-server (>=1.36.25 <=1.41.2) +32 more potentially affected by CVE-2025-62595 +1 more via koa (=2.16.2)
koa NPM version =2.16.2 is affected by a known vulnerability. The following packages have a transitive dependency on koa and may be impacted: - @certd/commercial-core =1.25.9, =1.36.25, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.19.3, =3.20.11,...
@certd/commercial-core (>=1.25.9 <=1.41.2), @certd/lib-server (>=1.36.25 <=1.41.2) +32 more potentially affected by CVE-2025-62595 via koa (=2.16.2)
koa NPM version =2.16.2 is affected by a known vulnerability. The following packages have a transitive dependency on koa and may be impacted: - @certd/commercial-core =1.25.9, =1.36.25, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.19.3, =3.20.11,...
Buffer overflow
In MicroHttpServer aka Micro HTTP Server through a8ab029, ParseHeader in lib/server.c allows a one-byte recv buffer overflow via a long URI...
MAL-2022-1543 Malicious code in bfx-lib-server-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99dd5c11acfbc3d05c335cec97025ce9519b1a3ddf7ca73f89fdb85b8a112487 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...