replicator (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package replicator, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2021-33420 — CVSS 9.8 (critical): A deserialization issue discovered in inikulin replicator before 1.0.4 allows remote attackers to run arbitrary code via the…
CVE-2026-2265 — CVSS 6.5 (medium): An unauthenticated remote code execution (RCE) vulnerability exists in applications that use the Replicator node package manager (npm)…