seroval

npm3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting serovalpage 1 of 1

CVE-2026-23956HIGHCVSS 7.5EG 7.5✓ Fixed in 1.4.1
2026-01-22
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 0.2.0 through 1.4.0, overriding RegExp serialization with extremely large patterns can exhaust JavaScript runtime me…
CVE-2026-23957HIGHCVSS 7.5EG 7.5✓ Fixed in 1.4.1
2026-01-22
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, overriding encoded array lengths by replacing them with an excessively large value causes the deser…
CVE-2026-24006HIGHCVSS 7.5EG 7.5✓ Fixed in 1.4.1
2026-01-22
Seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, serialization of objects with extreme depth can exceed the maximum call stack limit. In version 1.4…

Check whether seroval is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for seroval CVEs against the assets you own.

Start Free Scan →