deno vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2024-27933Highdeno: Deno arbitrary file descriptor close via `op_node_ipc_pipe()` leading to permission prompt bypassCVE-2024-27932Mediumdeno: Deno's improper suffix match testing for DENO_AUTH_TOKENSCVE-2024-27936Highdeno: Deno's deno_runtime vulnerable to interactive permission prompt spoofing via improper ANSI strippingCVE-2024-27935Highdeno: Deno's Node.js Compatibility Runtime has Cross-Session Data ContaminationCVE-2024-27931Mediumdeno: Insufficient permission checking in `Deno.makeTemp*` APIsCVE-2023-33966Highdeno: Missing "--allow-net" permission check for built-in Node modulesCVE-2023-26103Mediumdeno: Regular Expression Denial of Service in Deno.upgradeWebSocket APICVE-2023-28446Highdeno_runtime: Interactive `run` permission prompt spoofing via improper ANSI neutralizationCVE-2023-28445CriticalDeno: Deno improperly handles resizable ArrayBufferCVE-2023-22499Highdeno: Deno is vulnerable to race condition via interactive permission prompt spoofingCVE-2021-41641Highdeno: Link Following in DenoCVE-2022-24783Criticaldeno: Sandbox bypass leading to arbitrary code execution in DenoCVE-2021-32619Criticaldeno: Deno's static imports inside dynamically imported modules do not adhere to permission checks

Stop the waste.
Protect your environment with Kodem.