slp-validate

npm3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting slp-validatepage 1 of 1

CVE-2019-16761MEDIUMCVSS 5.7EG 5.7✓ Fixed in 1.0.1
2019-11-15
vulnerable: 1.0.0
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slp-validate@1.0.0 npm package. An attacker could create a specially crafted Bitcoin script in order to c…
CVE-2020-11072HIGHCVSS 8.6EG 8.6✓ Fixed in 1.2.1
2020-05-12
In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which w…
CVE-2020-15131HIGHCVSS 7.5EG 7.5✓ Fixed in 1.2.2
2020-07-30
In SLP Validate (npm package slp-validate) before version 1.2.2, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemented SLP wallet or opportunistic attacker could cr…

Check whether slp-validate is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for slp-validate CVEs against the assets you own.

Start Free Scan →