Primary

Context

ASN.1 TypeScript Library Integer Decoding Vulnerability Leading to ArrayBuffer Leak

Vulnerability

A vulnerability exists in the ASN.1 TypeScript ESM library, specifically in versions 11.0.5 and prior. The issue arises in the decoding process of INTEGER values, which can inadvertently expose the underlying ArrayBuffer. This vulnerability is classified as critical and is expected to be resolved in version 11.0.6.

Impact

Decoding INTEGER values can leak the underlying ArrayBuffer, potentially exposing sensitive data.

Remediation

Users can upgrade to version 11.0.6 to address this vulnerability.

Added: Feb 21, 2026, 7:37 AM

Updated: Feb 21, 2026, 7:37 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ASN.1 TypeScript Library Integer Decoding Vulnerability Leading to ArrayBuffer Leak

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating