pkg:npm/@angular/common
5 total CVEs
✅ Check your installed version
All known vulnerabilities
—CVE-2026-54268@angular/common: Denial of Service (DoS) via OOM in Date Formatting (formatDate) >= 22.0.0-next.0, < 22.0.1
—CVE-2026-54266@angular/common: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning >= 22.0.0-next.0, < 22.0.1
—CVE-2026-50171@angular/common: Denial of Service (DoS) via OOM in Number Formatting (digitsInfo) >= 22.0.0-next.0, < 22.0.0-rc.2
—CVE-2026-50170@angular/common: Information Leak via Default Caching of Credentialed Requests in HttpTransferCache >= 22.0.0-next.0, < 22.0.0-rc.2
—Angular is Vulnerable to XSRF Token Leakage via Protocol-Relative URLs in Angular HTTP Client
>= 21.0.0-next.0, < 21.0.1