Certificate validation in node-sass 2.0.0 to 4.14.1 is disabled when requesting binaries even if the user is not specifying an alternative download path.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-01-11T18:14:41
Updated: 2024-08-04T15:05:11.859Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-24025
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-01-11T19:15:12.993
Modified: 2021-01-15T13:29:24.687
Link: CVE-2020-24025
Redhat