Описание
AWS Lambda parser is vulnerable to Regular Expression Denial of Service
index.js in the aws-lambda-multipart-parser NPM package before 0.1.2 has a Regular Expression Denial of Service (ReDoS) issue via a crafted multipart/form-data boundary string.
Пакеты
Наименование
aws-lambda-multipart-parser
npm
Затронутые версииВерсия исправления
< 0.1.2
0.1.2
Связанные уязвимости
CVSS3: 7.5
nvd
почти 8 лет назад
index.js in the Anton Myshenin aws-lambda-multipart-parser NPM package before 0.1.2 has a Regular Expression Denial of Service (ReDoS) issue via a crafted multipart/form-data boundary string.