workerd is vulnerable to Improper Input Validation
55
Medium Risk
This version applies multiple security fixes in workerd: it prevents prototype-pollution-driven process aborts during structuredClone/deserialization, fixes several Use-after-free code pattern, avoids GC/finalizer crashes that could lead to std::terminate, adds strict limits to crypto operations to reduce resource-exhaustion DoS, hardens X509 string conversion, and prevents TLS checkServerIdentity from being silently ignored (it now throws ERR_OPTION_NOT_IMPLEMENTED when unsupported).
You are affected if you are using a version that falls within the vulnerable range.
workerd is vulnerable to Improper Input Validation in versions 0.0.1 - 1.20260618.1.
Upgrade the workerd library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant