Effect `AsyncLocalStorage` context lost/contaminated inside Effect fibers under concurrent load with RPC
- Severity:
- High
Description
No description available.
Recommendation
Update the effect package to the latest compatible version. Followings are version details:
- Affected version(s): < 3.20.0
- Patched version(s): 3.20.0
References
Related Issues
- parse-server: MFA SMS one-time password accepted twice under concurrent login - CVE-2026-43930
- Parse Server has an MFA single-use token bypass via concurrent authData login requests - CVE-2026-34224
- LiveQuery protected field leak via shared mutable state across concurrent subscribers - CVE-2026-34363
- Parse Server has a password reset token single-use bypass via concurrent requests - CVE-2026-32943
You might also like:
- Tags:
- npm
- effect
Anything's wrong? Let us know Last updated on March 25, 2026