What the vulnerability does

01Description

napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.

Key dates

02Disclosure timeline

July 24, 2020 CVE published
August 4, 2024 Record updated