Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
pbkdf2 silently returns predictable uninitialized/zero-filled memory for non-normalized or unimplemented algos supported by Node.js
Vulnerability Description
Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation. This vulnerability is associated with program files lib/to-buffer.Js. This issue affects pbkdf2: from 3.0.10 through 3.1.2.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Browserify pbkdf2 安全漏洞
Vulnerability Description
Browserify pbkdf2是Browserify开源的一个哈希算法软件 Browserify pbkdf2 3.1.2及之前版本存在安全漏洞,该漏洞源于输入验证不当导致签名欺骗。
CVSS Information
N/A
Vulnerability Type
N/A