Open mend-bolt-for-github[bot] opened 5 years ago
An HTTP(s) proxy `http.Agent` implementation for HTTP
path: /nthu-select-courses/node_modules/http-proxy-agent/package.json
Library home page: http://registry.npmjs.org/http-proxy-agent/-/http-proxy-agent-1.0.0.tgz
Found in HEAD commit: 6e3bd78b06a365913604a17e7a8eb29a0f9329dd
Versions of http-proxy-agent before 2.1.0 are vulnerable to denial of service and uninitialized memory leak when unsanitized options are passed to Buffer.
Publish Date: 2018-04-25
URL: WS-2018-0085
Base Score Metrics not available
Step up your Open Source Security Game with WhiteSource here
WS-2018-0085 - High Severity Vulnerability
Vulnerable Library - http-proxy-agent-1.0.0.tgz
An HTTP(s) proxy `http.Agent` implementation for HTTP
path: /nthu-select-courses/node_modules/http-proxy-agent/package.json
Library home page: http://registry.npmjs.org/http-proxy-agent/-/http-proxy-agent-1.0.0.tgz
Dependency Hierarchy: - :x: **http-proxy-agent-1.0.0.tgz** (Vulnerable Library)Found in HEAD commit: 6e3bd78b06a365913604a17e7a8eb29a0f9329dd
Vulnerability Details
Versions of http-proxy-agent before 2.1.0 are vulnerable to denial of service and uninitialized memory leak when unsanitized options are passed to Buffer.
Publish Date: 2018-04-25
URL: WS-2018-0085
CVSS 2 Score Details (8.0)
Base Score Metrics not available
Step up your Open Source Security Game with WhiteSource here