Libp2p Js-libp2p

4 CVEs affecting Libp2p Js-libp2p. Latest disclosed: 2026-07-08. Critical: 0, High: 4.

Top CVEs affecting Libp2p Js-libp2p
CVESeverityScorePublishedSummary
CVE-2026-49866High7.52026-07-08libp2p is a JavaScript Implementation of libp2p networking stack. Prior to 16.0.0, @libp2p/gossipsub defaultDecodeRpcLimits set maxIhaveMessageIDs and maxIwant…
CVE-2026-46679High7.52026-06-10libp2p is a JavaScript Implementation of libp2p networking stack. Prior to version 15.0.23, three cooperating omissions in @libp2p/gossipsub allow an unauthent…
CVE-2026-45783High7.52026-06-10libp2p is a JavaScript Implementation of libp2p networking stack. Prior to version 16.2.6, an unauthenticated remote peer can exhaust the disk storage of any @…
CVE-2022-23487High7.52022-12-07js-libp2p is the official javascript Implementation of libp2p networking stack. Versions older than `v0.38.0` of js-libp2p are vulnerable to targeted resource…