Skip to main content

Striae

1 CVEs product

Monthly

CVE-2026-31839 npm HIGH PATCH This Week

Striae versions prior to 3.0.0 allow local attackers to bypass package integrity verification by modifying both the manifest hash and package contents simultaneously, enabling delivery of tampered firearm examination data that passes validation checks. This integrity bypass affects forensic workflows relying on Striae's digital confirmation mechanism. No patch is currently available for affected installations.

Authentication Bypass Striae
NVD GitHub VulDB
CVSS 3.1
8.2
EPSS
0.0%
EPSS 0% CVSS 8.2
HIGH PATCH This Week

Striae versions prior to 3.0.0 allow local attackers to bypass package integrity verification by modifying both the manifest hash and package contents simultaneously, enabling delivery of tampered firearm examination data that passes validation checks. This integrity bypass affects forensic workflows relying on Striae's digital confirmation mechanism. No patch is currently available for affected installations.

Authentication Bypass Striae
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy