justmoon/node-bignum

Releases20

Frequency4 months 2 weeks

Last Release over 6 years ago

Stars418

Big integers for Node.js using OpenSSL

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-25324 ↗	May 6, 2022Friday, 6 May 2022, 20:15	7.5 HIGH	5 MEDIUM
All versions of package bignum are vulnerable to Denial of Service (DoS) due to a type-check exception in V8, when verifying the type of the second argument to the .powm function, V8 will crash regardless of Node try/catch blocks.