← Back

Fedorindutny

fedorindutny

1 CVE • 1 product

Products (1)

Click to collapse
Toggle
Ip
ip
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-42282
1Fedorindutny
1Ip
May 15, 2025
Feb 8, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally routable via isPublic.