Skip to main content

Atob

1 CVEs product

Monthly

CVE-2018-3745 npm CRITICAL POC PATCH Act Now

atob 2.0.3 and earlier allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Node.js Atob
NVD
CVSS 3.1
9.1
EPSS
2.2%
EPSS 2% CVSS 9.1
CRITICAL POC PATCH Act Now

atob 2.0.3 and earlier allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Node.js +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy