CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Node Packaged Modules Project: Security Vulnerabilities

CVE-2013-4116

lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.

CVSS Score

3.3

EPSS Score

0.001

Published

2014-04-22

Page 1

Vulnerabilities

Vulnerable Software

Node Packaged Modules Project: Security Vulnerabilities

Products

Pricing

Contact Us