Security Advisory

CVE-2024-21525

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-10 05:00:03

Last updated 2024-08-01 22:27:34

Assigner snyk

State PUBLISHED

Description

All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked. Creating a new twain.TwainSDK with a productName or productFamily, manufacturer, version.info property of length >= 34 chars leads to a buffer overflow vulnerability.

← Browse all CVEs View on cve.org ↗