Search for packages
| purl | pkg:npm/hawk@0.1.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5smn-zvsy-fydh
Aliases: CVE-2022-29167 GHSA-44pw-h2cw-w3vq |
hawk: REDoS in hawk.utils.parseHost() when parsing Host header |
Affected by 0 other vulnerabilities. |
|
VCID-uhy5-ke8w-47dz
Aliases: CVE-2016-2515 GHSA-jcpv-g9rr-qxrc |
Regular Expression Denial of Service in hawk Versions of `hawk` prior to 3.1.3, or 4.x prior to 4.1.1 are affected by a regular expression denial of service vulnerability related to excessively long headers and URI's. ## Recommendation Update to hawk version 4.1.1 or later. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-05-30T05:12:59.177052+00:00 | GitLab Importer | Affected by | VCID-5smn-zvsy-fydh | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/hawk/CVE-2022-29167.yml | 38.6.0 |
| 2026-05-30T03:38:57.577121+00:00 | GitLab Importer | Affected by | VCID-uhy5-ke8w-47dz | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/hawk/CVE-2016-2515.yml | 38.6.0 |