protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.
References
Link | Resource |
---|---|
https://hackerone.com/reports/319576 | Exploit Third Party Advisory |
Configurations
History
30 Jan 2023, 16:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:protobufjs_project:protobufjs:*:*:*:*:*:node.js:*:* |
Information
Published : 2018-06-07 02:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-3738
Mitre link : CVE-2018-3738
CVE.ORG link : CVE-2018-3738
JSON object : View
Products Affected
protobufjs_project
- protobufjs