Vulnerabilities > Digitalbazaar > Forge > 0.6.11
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-18 | CVE-2022-24771 | Improper Verification of Cryptographic Signature vulnerability in Digitalbazaar Forge Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. | 5.0 |
2022-03-18 | CVE-2022-24772 | Improper Verification of Cryptographic Signature vulnerability in Digitalbazaar Forge Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. | 5.0 |
2022-03-18 | CVE-2022-24773 | Improper Verification of Cryptographic Signature vulnerability in Digitalbazaar Forge Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. | 5.0 |
2022-01-06 | CVE-2022-0122 | Open Redirect vulnerability in Digitalbazaar Forge forge is vulnerable to URL Redirection to Untrusted Site | 5.8 |
2020-09-01 | CVE-2020-7720 | Unspecified vulnerability in Digitalbazaar Forge The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. | 7.3 |