Skip to main content

Browserify Sign

1 CVEs product

Monthly

CVE-2023-46234 npm HIGH PATCH This Week

browserify-sign is a package to duplicate the functionality of node's crypto public key functions, much of this is based on Fedor Indutny's work on indutny/tls.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jwt Attack Browserify Sign Debian Linux
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

browserify-sign is a package to duplicate the functionality of node's crypto public key functions, much of this is based on Fedor Indutny's work on indutny/tls.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jwt Attack Browserify Sign +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy