CVE-2020-28481 Blast Radius

MEDIUM • CVSS 5.3The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration. All domains are whitelisted by default.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2020-28481.

Start Free Scan →← Back to CVE-2020-28481