CVE-2023-32688 Invalid push request payload crashes Parse Server

parse-server-push-adapter is the official Push Notification adapter for Parse Server. The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. This issue has been patched in version 4.1.3...

parse-server 输入验证错误漏洞

parse-server is an open source Backend-as-a-Service BaaS framework that is primarily used for application backend processing. A security vulnerability exists in versions prior to parse-server-push-adapter 4.1.3, which stems from an invalid push notification causing an excessive load that could...

Invalid push request payload crashes Parse Server

Impact The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. Patches Invalid push notification payload is caught and an logged. Workarounds n/a References -...

GHSA-MXHG-RVWX-X993 Invalid push request payload crashes Parse Server

Impact The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. Patches Invalid push notification payload is caught and an logged. Workarounds n/a References -...

@evocodes/parse-server (>=2.2.11 <=2.2.27), @m1r4ge/parse-server (>=2.2.7 <=2.2.11) +36 more potentially affected by CVE-2023-32688 via parse-server-push-adapter (>=1.0.4 <=1.3.0)

parse-server-push-adapter NPM version =1.0.4, =2.2.11, =2.2.7, =2.2.7, =0.1.7, =0.0.1, =1.0.0, =2.2.3, =2.3.8, =2.2.18-mod, =2.2.25, =2.2.17, =2.3.3 and more Source cves: CVE-2023-32688 Source advisory: OSV:GHSA-MXHG-RVWX-X993...

PT-2023-23963 · Unknown · Parse-Server-Push-Adapter

Name of the Vulnerable Software and Affected Versions: parse-server-push-adapter versions prior to 4.1.3 Description: The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. Recommendations: For versions prior to 4.1.3, update to version 4.1.3 to resolve...