CVE-2021-32014

SheetJS Pro up to version 0.16.9 is affected: reading a crafted .xlsx with xlsx.js can cause a denial of service via CPU consumption. The issue is documented across multiple sources (NVD, Red Hat, npm advisory, OSV) and is mitigated by upgrading to 0.17.0 or later. Affected product: SheetJS (and ...