Lucene search

K

Denial of Service in protobufjs

🗓️ 09 Oct 2018 00:15:27Reported by GitHub Advisory DatabaseType 
github
 github
🔗 github.com👁 25 Views

Versions of `protobufjs` before 5.0.3 and 6.8.6 are vulnerable to a regular expression denial of service when parsing crafted invalid *.proto files. Update to version 5.0.3, 6.8.6 or later

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
Cvelist
CVE-2018-3738
7 Jun 201802:00
cvelist
Veracode
Regular Expression Denial Of Service (ReDoS)
3 Apr 201804:54
veracode
Hacker One
Node.js third-party modules: `protobufjs` is vulnerable to ReDoS when parsing crafted invalid *.proto files
25 Feb 201817:59
hackerone
NVD
CVE-2018-3738
7 Jun 201802:29
nvd
Prion
Code injection
7 Jun 201802:29
prion
OSV
Denial of Service in protobufjs
9 Oct 201800:27
osv
OSV
CVE-2018-3738
7 Jun 201802:29
osv
CVE
CVE-2018-3738
7 Jun 201802:29
cve
Vulners

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Oct 2018 00:27Current
5.4Medium risk
Vulners AI Score5.4
CVSS24.3
CVSS35.5
EPSS0.001
25
.json
Report