Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-wxr3-2hgv-qm8f: node-twain vulnerable to Improper Check or Handling of Exceptional Conditions

All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked. Creating a new twain.TwainSDK with a productName or productFamily, manufacturer, version.info property of length >= 34 chars leads to a buffer overflow vulnerability.

ghsa
#vulnerability#git#buffer_overflow

node-twain vulnerable to Improper Check or Handling of Exceptional Conditions

High severity GitHub Reviewed Published Jul 10, 2024 to the GitHub Advisory Database • Updated Jul 10, 2024

ghsa: Latest News

GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP