We’ve disclosed 5 vulnerabilities 🎉

The Snyk security team helps disclose many vulnerabilities every month, in key packages across a variety of ecosystems. We work closely with open source package maintainers in order to ensure all vulnerabilities are responsibly and efficiently handled in a timely manner.
Our ever-growing list of sources include:

Vulnerability disclosures and reports sent to us from members of the community
Vulnerabilities we've uncovered by monitoring security chatter and trends across open source ecosystems
Partnerships with organizations and academic institutions
Research done internally by the Snyk Security Team

Report a new vulnerability

Featured disclosed vulnerabilities

Prototype Pollution

Affects

mockjs

Discovered by Timothee Desurmont

Insufficient Entropy

Affects

pubnub

Discovered by Varga Daniel

Insufficient Entropy

Affects

pubnub

Discovered by Varga Daniel

Recently disclosed vulnerabilities by Snyk

- H
Prototype Pollution in mockjs (npm)

Discovered by Timothee Desurmont

7 Dec 2023
- M
Insufficient Entropy in pubnub (pub)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in pubnub (cocoapods)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in github.com/pubnub/swift (swift)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in com.pubnub:pubnub-kotlin (maven)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in pubnub (cargo)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in pubnub (rubygems)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in pubnub/pubnub (composer)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in pubnub (pip)

Discovered by Varga Daniel

5 Dec 2023
- M
Insufficient Entropy in github.com/pubnub/go/v7 (golang)

Discovered by Varga Daniel

5 Dec 2023

View all vulnerabilities disclosed by Snyk