Description
All versions of the package node-bluetooth are vulnerable to Buffer Overflow via the findSerialPortChannel method due to improper user input length validation.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-NODEBLUETOOTH-3311821
Related Vulnerabilities
CVE-2022-25867 Vulnerability in maven package io.socket:socket.io-client
CVE-2020-9038 Vulnerability in npm package joplin
CVE-2022-2064 Vulnerability in npm package nocodb
CVE-2023-37949 Vulnerability in maven package io.jenkins.plugins:macstadium-orka
CVE-2023-38507 Vulnerability in npm package @strapi/plugin-users-permissions