8 matches found
CVE-2023-34109
zxcvbn-ts is an open source password strength estimator written in typescript. This vulnerability affects users running on the nodeJS platform which are using the second argument of the zxcvbn function. It can result in an unbounded resource consumption as the user inputs array is extended with...
Denial Of Service (DoS)
zxcvbn-ts password strength estimator is vulnerable to denial of service DoS. The vulnerability is due to not restricting user supplied input to a maximum value. This leads to unbounded resource consumption resulting in a nodejs crash...
CVE-2023-34109
zxcvbn-ts is an open source password strength estimator written in typescript. This vulnerability affects users running on the nodeJS platform which are using the second argument of the zxcvbn function. It can result in an unbounded resource consumption as the user inputs array is extended with...
Design/Logic Flaw
zxcvbn-ts is an open source password strength estimator written in typescript. This vulnerability affects users running on the nodeJS platform which are using the second argument of the zxcvbn function. It can result in an unbounded resource consumption as the user inputs array is extended with...
CVE-2023-34109 User input results in Unbounded resource consumption in @zxcvbn-ts/core
zxcvbn-ts is an open source password strength estimator written in typescript. This vulnerability affects users running on the nodeJS platform which are using the second argument of the zxcvbn function. It can result in an unbounded resource consumption as the user inputs array is extended with...
CVE-2023-34109
CVE-2023-34109 — zxcvbn-ts (core) resource exhaustion : Affects zxcvbn-ts on Node.js when using the second argument of the zxcvbn function, where the inputs array can grow unbounded with each call, leading to potential DoS. Public advisories indicate the issue impacts both Node.js and browsers, a...
CVE-2023-34109 User input results in Unbounded resource consumption in @zxcvbn-ts/core
zxcvbn-ts is an open source password strength estimator written in typescript. This vulnerability affects users running on the nodeJS platform which are using the second argument of the zxcvbn function. It can result in an unbounded resource consumption as the user inputs array is extended with...
zxcvbn-ts 资源管理错误漏洞
zxcvbn-ts is zxcvbn-ts open source a password strength estimator inspired by password crackers. A resource management error vulnerability exists in versions prior to zxcvbn-ts 3.0.2, which stems from...