Описание
The restify-paginate package 0.0.5 for Node.js allows remote attackers to cause a Denial-of-Service by omitting the HTTP Host header. A Restify-based web service would crash with an uncaught exception.
Ссылки
- ProductThird Party Advisory
- ExploitPatchThird Party Advisory
- Third Party Advisory
- ProductThird Party Advisory
- ProductThird Party Advisory
- ExploitPatchThird Party Advisory
- Third Party Advisory
- ProductThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:restify-paginate_project:restify-paginate:0.0.5:*:*:*:*:node.js:*:*
EPSS
Процентиль: 81%
0.01508
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-755
Связанные уязвимости
EPSS
Процентиль: 81%
0.01508
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-755