Known Vulnerabilities for Engine.io by Socket
Listed below are 2 of the newest known vulnerabilities associated with "Engine.io" by "Socket".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34760 | vLLM is an inference and serving engine for large language models (LLMs). From version 0.5.5 to before version 0.18.0, Libros... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-34214 | Trino is a distributed SQL query engine for big data analytics. From version 439 to before version 480, Iceberg connector RES... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-33992 | pyLoad is a free and open-source download manager written in Python. Prior to version 0.5.0b3.dev97, PyLoad's download engine... | Not Provided | 2026-03-27 | 2026-03-30 |
| CVE-2026-33729 | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzib... | Not Provided | 2026-03-27 | 2026-03-30 |
| CVE-2026-33531 | InvenTree is an Open Source Inventory Management System. Prior to version 1.2.6, a path traversal vulnerability in the report... | Not Provided | 2026-03-26 | 2026-03-27 |
| CVE-2026-33397 | The Angular SSR is a server-rise rendering tool for Angular applications. Versions on the 22.x branch prior to 22.0.0-next.2,... | Not Provided | 2026-03-26 | 2026-03-30 |
| CVE-2026-33287 | LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to version 10.25.1, the `replace_fi... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2026-33285 | LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to version 10.25.1, LiquidJS's `mem... | Not Provided | 2026-03-26 | 2026-03-28 |
| CVE-2026-32524 | Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow Photo Engine wplr-sync allows Upload a Web Shell ... | Not Provided | 2026-03-25 | 2026-03-26 |
| CVE-2026-31937 | Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15, inefficiency in DCERPC buffering can lead to a perfor... | Not Provided | 2026-04-02 | 2026-04-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Socket | Engine.io | 4.0.6 | All | All | All |
| Application | Socket | Engine.io | 4.0.5 | All | All | All |
| Application | Socket | Engine.io | 4.0.4 | All | All | All |
| Application | Socket | Engine.io | 4.0.3 | All | All | All |
| Application | Socket | Engine.io | 4.0.2 | All | All | All |
| Application | Socket | Engine.io | 4.0.1 | All | All | All |
| Application | Socket | Engine.io | 4.0.0 | - | All | All |
| Application | Socket | Engine.io | 4.0.0 | alpha0 | All | All |
| Application | Socket | Engine.io | 4.0.0 | alpha1 | All | All |
| Application | Socket | Engine.io | 3.5.0 | All | All | All |
| Application | Socket | Engine.io | 3.4.2 | All | All | All |
| Application | Socket | Engine.io | 3.4.1 | All | All | All |
| Application | Socket | Engine.io | 3.4.0 | All | All | All |
| Application | Socket | Engine.io | 3.3.2 | All | All | All |
| Application | Socket | Engine.io | 3.3.1 | All | All | All |
| Application | Socket | Engine.io | 3.3.0 | All | All | All |
| Application | Socket | Engine.io | 3.2.1 | All | All | All |
| Application | Socket | Engine.io | 3.2.0 | All | All | All |
| Application | Socket | Engine.io | 3.1.5 | All | All | All |
| Application | Socket | Engine.io | 3.1.4 | All | All | All |