Vulnerabilities (CVE)

Filtered by vendor Ced Project Subscribe
Filtered by product Ced
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-39131 1 Ced Project 1 Ced 2024-11-21 5.0 MEDIUM 7.5 HIGH
ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the Node.js process to crash. The problem has been patched in ced v1.0.0. As a workaround, before passing an argument to ced, verify it’s a `Buffer` using `Buffer.isBuffer(obj)`.