Vulnerabilities > Netmask Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-01	CVE-2021-28918	Incorrect Type Conversion or Cast vulnerability in Netmask Project Netmask Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. network low complexity netmask-project CWE-704 critical	9.1
2021-03-30	CVE-2021-29418	Improper Input Validation vulnerability in Netmask Project Netmask The netmask package before 2.0.1 for Node.js mishandles certain unexpected characters in an IP address string, such as an octal digit of 9. network low complexity netmask-project CWE-20	5.3

Vulnerabilities > Netmask Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Netmask Project"}]}