CVE-2016-2515
CVE-2016-2515 affects Hawk in Node.js/npm deployments: Hawk before 3.1.3 and 4.x before 4.1.1 is vulnerable to a denial of service where an attacker can cause CPU exhaustion by sending an excessively long header or URI that matches an improper regular expression. Reported in multiple sources (GHS...