Опубликовано: 10 июл. 2024
Источник: github
Github: Прошло ревью
CVSS4: 8.7
CVSS3: 7.5
Описание
speaker vulnerable to Denial of Service
All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. Exploiting this vulnerability can lead to a process crash.
Пакеты
Наименование
speaker
npm
Затронутые версииВерсия исправления
<= 0.5.5
Отсутствует
Связанные уязвимости
CVSS3: 7.5
nvd
больше 1 года назад
All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. Exploiting this vulnerability can lead to a process crash.