Vulnerabilities | Fluid Attacks Database

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

2

Debian, Npm

Total vulnerabilities tracked

22

From global vulnerability databases

Exclude malware

NO

Package undici

FLAT-8J1J4 (CVE-2026-1526)

Asymmetric denial of service In undici

7.7

High

Ecosystem: Npm

Package: undici

FLAT-CMBGC (CVE-2026-2229)

Asymmetric denial of service In undici

7.7

High

Ecosystem: Npm

Package: undici

FLAT-NRHV9 (CVE-2026-1527)

Lack of data validation In undici

1.3

Low

Ecosystem: Npm

Package: undici

FLAT-ERLQQ (CVE-2026-2581)

Asymmetric denial of service In undici

6.3

Medium

Ecosystem: Npm

Package: undici

FLAT-9L61C (CVE-2026-1528)

Out-of-bounds read In undici

7.7

High

Ecosystem: Npm

Package: undici

FLAT-XEOX2 (CVE-2026-1525)

HTTP request smuggling In undici

7.9

High

Ecosystem: Npm

Package: undici

FLAT-3BNOK (CVE-2026-22036)

Improper resource allocation In undici

6.3

Medium

Ecosystem: Npm

Package: undici

FLAT-PJK55 (CVE-2025-47279)

Improper resource allocation In node-undici

0.6

Low

Ecosystem: Debian

Package: node-undici

FLAT-CXMFA (CVE-2025-22150)

Insecure generation of random numbers In undici

0.5

Low

Ecosystem: Npm

Package: undici

FLAT-0GZPP (CVE-2024-38372)

Sensitive information sent insecurely In undici

0.4

Low

Ecosystem: Npm

Package: undici

FLAT-JEQE8 (CVE-2024-30260)

Improper authorization control for web services In node-undici

0.4

Low

Ecosystem: Debian

Package: node-undici

FLAT-Y2ZSK (CVE-2024-30261)

Improper authorization control for web services In node-undici

0.5

Low

Ecosystem: Debian

Package: node-undici

FLAT-OGDHL (CVE-2024-24758)

Enabled default configuration In node-undici

0.4

Low

Ecosystem: Debian

Package: node-undici

FLAT-SR1N1 (CVE-2024-24750)

Improper resource allocation In undici

4.9

Medium

Ecosystem: Npm

Package: undici

FLAT-OZ9PO (CVE-2023-45143)

Enabled default configuration In undici

0.4

Low

Ecosystem: Npm

Package: undici

FLAT-RLXS2 (CVE-2023-23936)

Lack of data validation In undici

1.2

Low

Ecosystem: Npm

Package: undici

FLAT-XODYC (CVE-2023-24807)

Asymmetric denial of service - ReDoS In undici

6.6

Medium

Ecosystem: Npm

Package: undici

FLAT-TTJ38 (CVE-2022-35948)

Lack of data validation In undici

2.7

Low

Ecosystem: Npm

Package: undici

FLAT-DAFXX (CVE-2022-35949)

Server-side request forgery (SSRF) In undici

2.7

Low

Ecosystem: Npm

Package: undici

FLAT-9E8S0 (CVE-2022-31151)

Lack of data validation In undici

1.7

Low

Ecosystem: Npm

Package: undici

FLAT-JS9VX (CVE-2022-31150)

Lack of data validation In undici

2.7

Low

Ecosystem: Npm

Package: undici

FLAT-EBBQ9 (CVE-2022-32210)

Insecure digital certificates In node-undici

5.7

Medium

Ecosystem: Debian

Package: node-undici