Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

55 matches found

RedHat Linux
RedHat Linuxadded 2026/02/17 12:55 a.m.0 views

nanoid: nanoid mishandles non-integer values

A flaw was found in nanoid. Affected versions of nanoid mishandles non-integer values. When nanoid is called with a fractional value, there were a number of undesirable effects: - In browser and non-secure, the code infinite loops on while size-- - In node, the value of poolOffset becomes...

4.3CVSS5.9AI score0.0011EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/25 12:4 p.m.3 views

Security Bulletin: A vulnerability in NanoID affect IBM® Db2® Big SQL on IBM Cloud Pak for Data.

Summary A vulnerability in NanoID affect IBM® Db2® Big SQL 7 on IBM Cloud Pak for Data 4 and 5. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop with Unreachable Exit Condition...

4.3CVSS5.7AI score0.0011EPSS
Exploits0Affected Software1
OSV
OSVadded 2026/01/21 4:48 a.m.3 views

MAL-2026-418 Malicious code in nanoid-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fad39f50bf85a03002a528aac3cf53797c47e72d196c7e0f9b92623e03088abf The package nanoid-js was found to contain malicious code. Source: ghsa-malware b20b5d4f24d425723aaaf45603909066d5983fe5341afba20f47d091f7ac0933 Any...

5.5AI score
Exploits0References1
Snyk
Snykadded 2026/01/21 4:48 a.m.1 views

Malicious Package

Overview nanoid-js is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.5AI score
Exploits0References2
EUVD
EUVDadded 2026/01/21 4:48 a.m.2 views

EUVD-2026-3720

Malicious code in nanoid-js npm...

5.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/21 4:48 a.m.5 views

Malicious code in nanoid-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fad39f50bf85a03002a528aac3cf53797c47e72d196c7e0f9b92623e03088abf The package nanoid-js was found to contain malicious code. Source: ghsa-malware b20b5d4f24d425723aaaf45603909066d5983fe5341afba20f47d091f7ac0933 Any...

5.5AI score
Exploits0References1
OSV
OSVadded 2026/01/08 8:5 a.m.4 views

ROOT-APP-NPM-CVE-2024-55565 CVE-2024-55565 in @rootio/nanoid - Patched by Root

Root has patched CVE-2024-55565 in the @rootio/nanoid package for Root:npm. Multiple fixed versions available...

4.3CVSS5.4AI score0.0011EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletinsadded 2025/12/02 2:51 p.m.7 views

Security Bulletin: Multiple vulnerabilities in IBM QRadar Use Case Manager app

Summary Multiple vulnerabilities were addressed in IBM QRadar Use Case Manager app version 4.1.0 Vulnerability Details CVEID:CVE-2025-58754 DESCRIPTION: Axios is a promise based HTTP client for the browser and Node.js. When Axios prior to versions 0.30.2 and 1.12.0 runs on Node.js and is given a...

9.4CVSS5.5AI score0.01319EPSS
Exploits5Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-0677

Malicious code in bioql PyPI...

5.5CVSS6.9AI score0.00027EPSS
Exploits1References12
Tenable Nessus
Tenable Nessusadded 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-23566

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf function which allows to reproduce the last id generated...

5.5CVSS6.8AI score0.00027EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletinsadded 2025/08/06 5:47 p.m.4 views

Security Bulletin: Vulnerabilities in nanoid affects IBM watsonx Orchestrate with watsonx Assistant Cartridge

Summary Potential vulnerability in nanoid has been identified that affects IBM watsonx Orchestrate with watsonx Assistant Cartridge - UAB Component. The vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid a...

4.3CVSS5.9AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/07/10 8:58 a.m.2 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in nanoid-2.1.11.tgz

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of nanoid-2.1.11.tgz Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop with Unreachable Exit Condition...

4.3CVSS6.7AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/06/30 6:36 a.m.5 views

Security Bulletin: IBM Maximo Application Suite - Manage Component uses nanoid-3.3.7.tgz which is vulnerable to CVE-2024-55565

Summary Security Bulletin: IBM Maximo Application Suite - Manage Component uses nanoid-3.3.7.tgz which is vulnerable to CVE-2024-55565. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before...

4.3CVSS6AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/05/14 7:46 p.m.6 views

Security Bulletin: Vulnerability in nanoid (aka Nano ID) affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in nanoid aka Nano ID has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...

4.3CVSS6.8AI score0.0011EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletinsadded 2025/04/14 9:38 a.m.9 views

Security Bulletin: IBM Maximo Application Suite uses nanoid-3.3.7.tgz which is vulnerable to CVE-2024-55565.

Summary IBM Maximo Application Suite uses nanoid-3.3.7.tgz which is vulnerable to CVE-2024-55565. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values...

4.3CVSS6.6AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/03/12 12:39 p.m.5 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service [CVE-2024-55565]

Summary Node.js module nanoid is used by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service. This bulletin provides patch information to address the reported vulnerability in Node.js module nanoid...

4.3CVSS6.1AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/03/10 10:34 p.m.4 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in nanoid

Summary IBM Watson Discovery for Cartridge contains a vulnerable version of nanoid Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop with Unreachable Exit Condition 'Infinite Loop...

4.3CVSS4.5AI score0.0011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/03/03 5:21 p.m.18 views

Security Bulletin: Multiple Vulnerabilities in IBM Event Processing

Summary IBM Event Processing was affected by multiple vulnerabilities. These are affecting the operator and frontend components. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop...

9.8CVSS4.8AI score0.78509EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/02/10 12:59 p.m.5 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to nanoid-3.3.7.tgz CVE-2024-55565

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to nanoid-3.3.7.tgz CVE-2024-55565. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer...

4.3CVSS4.6AI score0.0011EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linuxadded 2025/02/05 8:58 a.m.18 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.8

Red Hat OpenShift Service Mesh Containers for 2.5.8 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift...

8.7CVSS6.7AI score0.00302EPSS
Exploits0References4
Rows per page
Query Builder