pkg:npm/file-type

All known vulnerabilities

• HIGH7.5CVE-2022-36313file-type vulnerable to Infinite Loop via malformed MKV file
  >= 13.0.0, < 16.5.4
• MEDIUM5.3CVE-2026-32630file-type: ZIP Decompression Bomb DoS via [Content_Types].xml entry
  >= 20.0.0, < 21.3.2
• MEDIUM5.3CVE-2026-31808file-type affected by infinite loop in ASF parser on malformed input with zero-size sub-header
  >= 13.0.0, < 21.3.1