Maven package
co.fs2/fs2-io_sjs1_3
pkg:maven/co.fs2/fs2-io_sjs1_3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-31183 | — | >= 3.1.0, < 3.2.11 | 3.2.11 | Aug 1, 2022 | fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode `TLSSocket` using `fs2-io` on Node.js, the parameter `requestCert = true` is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1 |
- CVE-2022-31183Aug 1, 2022affected >= 3.1.0, < 3.2.11fixed 3.2.11
fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode `TLSSocket` using `fs2-io` on Node.js, the parameter `requestCert = true` is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1