Vulnerabilities > WS Project

DATE CVE VULNERABILITY TITLE RISK
2021-05-25 CVE-2021-32640 Resource Exhaustion vulnerability in multiple products
ws is an open source WebSocket client and server library for Node.js.
network
low complexity
ws-project netapp CWE-400
5.3
2018-05-31 CVE-2016-10542 Improper Input Validation vulnerability in WS Project WS
ws is a "simple to use, blazing fast and thoroughly tested websocket client, server and console for node.js, up-to-date against RFC-6455".
network
low complexity
ws-project CWE-20
7.5
2018-05-31 CVE-2016-10518 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in WS Project WS
A vulnerability was found in the ping functionality of the ws module before 1.0.0 which allowed clients to allocate memory by sending a ping frame.
network
low complexity
ws-project CWE-119
7.5