@astrojs/node
This hub aggregates every CVE we track for @astrojs/node, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM4HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
3
1
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting @astrojs/node.
- CVE-2026-29772Astro: Memory exhaustion DoS due to missing request body size limit in Server Islands5.9
- CVE-2026-27829Astro is vulnerable to SSRF due to missing allowlist enforcement in remote image inferSize6.5
- CVE-2026-27729Astro has memory exhaustion DoS due to missing request body size limit in Server Actions5.9
- CVE-2026-25545Astro has Full-Read SSRF in error rendering via Host: header injection8.6
- CVE-2025-55303Unauthorized third-party images in Astro’s _image endpoint6.1
Product normalization is registry-driven with AI assist and human review. How it works