CVE-2022-25867 Blast Radius

HIGH • CVSS 7.5The package io.socket:socket.io-client before 2.0.1 are vulnerable to NULL Pointer Dereference when parsing a packet with with invalid payload format.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2022-25867.

Start Free Scan →← Back to CVE-2022-25867