An issue exists in bcoin-org bcoin version 2.2.0, allows remote malicious users to obtain sensitive information via weak hashing algorithms in the component \vendor\faye-websocket.js.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bcoin bcoin 2.2.0 |