0.001 Low
EPSS
Percentile
43.0%
Node is vulnerable to authentication bypasses. The library uses a vulnerable version of OpenSSL, allowing a malicious user to bypass authentication by passing data through the HTTP2 or TLS modules.
github.com/nodejs/node/pull/17526
nodejs.org/en/blog/vulnerability/december-2017-security-releases/