CVE-2020-36049

2021-01-20T11:21:01
ID RH:CVE-2020-36049
Type redhatcve
Reporter redhat.com
Modified 2022-01-14T17:31:54

Description

An uncontrolled resource consumption vulnerability was found in socket.io-parser. If an attacker crafts a packet with a very large payload length, this can cause the parser to consume an ever-increasing amount of memory, resulting in a denial of service. The highest threat from this vulnerability is to system availability.