CVE-2026-27452

Critical CVSS: 9.2

ASN.1 TypeScript ESM library, including codecs for Basic Encoding Rules (BER) and Distinguished Encoding Rules (DER). In versions 11.0.5 and below, in some cases, decoding an INTEGER could leak the underlying ArrayBuffer. This issue is expected to be fixed in version 11.0.6.

Vendor

Jonathanwilbur

Product

Asn1-ts

CWE

CWE-200

Yayın Tarihi

2026-02-21 07:16:13

Güncelleme

2026-03-03 17:28:50

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-200 Asn1-ts CRITICAL Jonathanwilbur 2026

Referanslar

https://github.com/JonathanWilbur/asn1-ts/security/advisories/GHSA-h5rw-vxjr-8q79