@hono/node-server
This hub aggregates every CVE we track for @hono/node-server, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting @hono/node-server.
- CVE-2026-29087@hono/node-server: Authorization bypass for protected static paths via encoded slashes in Serve Static Middleware7.5
- CVE-2024-32652@hono/node-server contains Denial of Service risk when receiving Host header that cannot be parsed7.5
- CVE-2024-23340@hono/node-server can't handle "double dots" in URL5.3
Product normalization is registry-driven with AI assist and human review. How it works