Browse all 6 CVE security advisories affecting socketio. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33151 | socket.io allows an unbounded number of binary attachments — socket.ioCWE-20 | 7.5 | - | 2026-03-20 |
| CVE-2024-38355 | Unhandled 'error' event in socket.io — socket.ioCWE-20 | 7.3 | High | 2024-06-19 |
| CVE-2023-32695 | Insufficient validation when decoding a Socket.IO packet — socket.io-parserCWE-20 | 7.3 | High | 2023-05-27 |
| CVE-2023-31125 | Uncaught exception in engine.io — engine.ioCWE-248 | 6.5 | Medium | 2023-05-08 |
| CVE-2022-41940 | Uncaught exception in engine.io — engine.ioCWE-248 | 7.1 | High | 2022-11-22 |
| CVE-2022-21676 | Uncaught Exception in engine.io — engine.ioCWE-754 | 7.5 | High | 2022-01-12 |
This page lists every published CVE security advisory associated with socketio. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.