Vulnerabilities > Sass Lang > Node Sass > 3.3.2

DATE CVE VULNERABILITY TITLE RISK
2021-01-11 CVE-2020-24025 Improper Certificate Validation vulnerability in Sass-Lang Node-Sass
Certificate validation in node-sass 2.0.0 to 4.14.1 is disabled when requesting binaries even if the user is not specifying an alternative download path.
network
low complexity
sass-lang CWE-295
5.0
5.0