CVE-2021-32012

SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service memory consumption via a crafted .xlsx document that is mishandled when read by xlsx.js issue 1 of 2...

Denial of Service (DoS)

Overview xlsx is a Parser and writer for various spreadsheet formats. Affected versions of this package are vulnerable to Denial of Service DoS. An attacker who can send a malicious excel file parsed by this library can cause maximum CPU usage. Note: xlsx package after version 0.18.5 is distribut...

1-click-bom (>=1.3.0 <=1.3.1), 25uikit (>=1.2.7 <=1.2.10) +2749 more potentially affected by CVE-2021-32012 via xlsx (>=0.10.3 <=0.16.9)

xlsx NPM version =0.10.3, =1.3.0, =1.2.7, =1.0.6, =0.0.1, =0.0.1, =0.0.3, =0.10.22, =0.0.2, =1.9.2, =1.0.1, =1.0.0, =1.0.1 - @aarongray.org/xlsx-workbook =0.0.1 - @abcum/ember-sheetjs =0.1.0 and more Source cves: CVE-2021-32012 Source advisory: SNYK:JS-XLSX-1311141...