Skip to main content

Fast String Search

2 CVEs product

Monthly

CVE-2022-25872 npm MEDIUM POC This Month

All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Fast String Search
NVD GitHub
CVSS 3.1
5.3
EPSS
1.1%
CVE-2022-22138 npm HIGH POC This Week

All versions of package fast-string-search are vulnerable to Denial of Service (DoS) when computations are incorrect for non-string inputs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Fast String Search
NVD
CVSS 3.1
7.5
EPSS
1.2%
EPSS 1% CVSS 5.3
MEDIUM POC This Month

All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Fast String Search
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC This Week

All versions of package fast-string-search are vulnerable to Denial of Service (DoS) when computations are incorrect for non-string inputs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Fast String Search
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy