Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2026-2739
CVE-2026-2739
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
Published Feb 19, 2026
https://gist.github.com/Kr0emer/02370d18328c28b5dd7f9ac880d22a91
https://github.com/advisories/GHSA-378v-28hj-76wf
CVSS Score
Medium
6.9
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
0x-monorepo-development
1.0.0
npm
21novh
1.0.0
npm
3dwayfinder-angular
0.1.9
npm
3dwayfinder-angular
0.2.1
npm
3dwayfinder-angular
0.2.2
npm
3f-web3.js
1.7.5
npm
@0xflydev/labz
1.0.0
npm
@0xflydev/labz
1.0.10
npm
@0xflydev/labz
1.0.11
npm
@0xflydev/labz
1.0.12
npm
@0xflydev/labz
1.0.13
npm
@0xflydev/labz
1.0.14
npm
@0xflydev/labz
1.0.15
npm
@0xflydev/labz
1.0.1
npm
@0xflydev/labz
1.0.2
npm
@0xflydev/labz
1.0.3
npm
@0xflydev/labz
1.0.4
npm
@0xflydev/labz
1.0.5
npm
@0xflydev/labz
1.0.6
npm
@0xflydev/labz
1.0.7
npm
@0xflydev/labz
1.0.8
npm
@0xflydev/labz
1.0.9
npm
@1upmonster/duel
0.1.0
npm
@1upmonster/duel
0.1.1
npm
@1upmonster/duel
0.1.2
npm
@1upmonster/duel
0.1.3
npm
@25sprout/react-starter
0.15.0-alpha.4
npm
@25sprout/react-starter
0.15.0-alpha.5
npm
@2pi-network/create-app
0.1.0-alpha.0
npm
@2pi-network/create-app
0.1.0-alpha.1
npm
@2pi-network/create-app
0.1.0-alpha.2
npm
@2pi-network/create-app
0.1.0-alpha.3
npm
@2pi-network/create-app
0.1.0-alpha.4
npm
@2pi-network/create-app
0.1.0-alpha.6
npm
@2pi-network/create-app
0.1.0-alpha.7
npm
@2pi-network/create-app
0.1.0-alpha.8
npm
@2pi-network/js-sdk
0.2.0-beta.30
npm
@2pi-network/js-sdk
0.2.0-beta.31
npm
@2pi-network/js-sdk
0.2.0-beta.32
npm
@2pi-network/js-sdk
0.2.0-beta.33
npm
@2pi-network/sdk
0.1.0-alpha.5
npm
@2pi-network/sdk
0.1.0-alpha.9
npm
@360bid/eb-elelemt-ui
0.0.3
npm
@4c/layout
0.1.0
npm
@8gen/evote-crypto
0.2.1
npm
@a-cloud-guru/react-ui-kit
1.0.0
npm
@a-cloud-guru/react-ui-kit
1.0.10
npm
@a-cloud-guru/react-ui-kit
1.0.11
npm
@a-cloud-guru/react-ui-kit
1.0.1
npm
@a-cloud-guru/react-ui-kit
1.0.2
1-50 of 25,317
CVE-2026-2739 | Components Impacted | Sonatype Guide | Sonatype Guide
