VYPR

npm package

node-stringbuilder

pkg:npm/node-stringbuilder

Vulnerabilities (1)

  • CVE-2024-21524HigJul 10, 2024
    affected <= 2.2.7

    All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input. It's possible to return previously allocated mem