{"id":"CVE-2024-55565","details":"nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.","aliases":["GHSA-mwcw-c2x4-8c55"],"modified":"2026-04-10T05:18:35.955288Z","published":"2024-12-09T02:15:19.607Z","related":["CGA-jc55-3v58-v6p8","openSUSE-SU-2025:14663-1"],"references":[{"type":"WEB","url":"https://github.com/ai/nanoid/compare/3.3.7...3.3.8"},{"type":"WEB","url":"https://github.com/ai/nanoid/releases/tag/5.0.9"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/12/msg00025.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00006.html"},{"type":"FIX","url":"https://github.com/ai/nanoid/pull/510"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ai/nanoid","events":[{"introduced":"0"},{"fixed":"65a38ac63a0709c420b9de30b15511b84e87c423"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"5.0.9"}]}}],"versions":["0.1.0","0.1.1","0.2.0","0.2.1","0.2.2","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","2.0.0","2.0.1","2.0.2","2.0.3","2.0.4","2.1.0","2.1.1","2.1.10","2.1.11","2.1.2","2.1.3","2.1.4","2.1.5","2.1.6","2.1.7","2.1.8","2.1.9","3.0.0","3.0.1","3.0.2","3.1.0","3.1.1","3.1.10","3.1.11","3.1.12","3.1.13","3.1.14","3.1.15","3.1.16","3.1.17","3.1.18","3.1.19","3.1.2","3.1.20","3.1.21","3.1.22","3.1.23","3.1.24","3.1.25","3.1.26","3.1.27","3.1.28","3.1.29","3.1.30","3.1.31","3.1.32","3.1.4","3.1.5","3.1.6","3.1.7","3.1.8","3.1.9","3.2.0","3.3.0","3.3.1","3.3.2","3.3.3","3.3.4","4.0.0","4.0.1","4.0.2","5.0.0","5.0.1","5.0.2","5.0.3","5.0.4","5.0.5","5.0.6","5.0.7","5.0.8"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-55565.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}]}