VYPR

Engine.io

by Socket

npm: engine.io

Source repositories

CVEs (3)

  • CVE-2023-31125May 8, 2023
    risk 0.00cvss epss 0.01

    Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional communication layer for Socket.IO. An uncaught exception vulnerability was introduced in version 5.1.0 and included in version 4.1.0 of the `socket.io` parent package. Older versions are…

  • CVE-2022-41940Nov 22, 2022
    risk 0.00cvss epss 0.02

    Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional communication layer for Socket.IO. A specially crafted HTTP request can trigger an uncaught exception on the Engine.IO server, thus killing the Node.js process. This impacts all the…

  • CVE-2022-21676Jan 12, 2022
    risk 0.00cvss epss 0.03

    Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional communication layer for Socket.IO. A specially crafted HTTP request can trigger an uncaught exception on the Engine.IO server, thus killing the Node.js process. This impacts all the…