get-ip-range

Releases14

Frequency3 months 6 days

Last Release over 5 years ago

Simple utility to convert either CIDR notation or two IP addresses to an array of the range of IP addresses

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-27191 ↗	Feb 11, 2021Thursday, 11 February 2021, 18:15	7.5 HIGH	5 MEDIUM
The get-ip-range package before 4.0.0 for Node.js is vulnerable to denial of service (DoS) if the range is untrusted input. An attacker could send a large range (such as 128.0.0.0/1) that causes resource exhaustion.