Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package piscina, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2026-55388 — CVSS 8.1 (high): piscina is a node.js worker pool implementation. Prior to 6.0.0-rc.2, 5.2.0, and 4.9.3, piscina's constructor and run() paths read the…