CRITICAL
Node Serialize Project
CVE published 2017-02-09
CVE-2017-5941
CVE-2017-5941 is a critical deserialization vulnerability in node-serialize 0.0.4 for Node.js. According to the CVE description and NVD record, untrusted data passed to unserialize() can be abused to achieve arbitrary code execution, which aligns with CWE-502 (deserialization of untrusted data). The NVD CVSS vector rates this as network-exploitable with no privileges or user interaction required and high [truncated]