Количество 2
Количество 2
CVE-2024-32652
The adapter @hono/node-server allows you to run your Hono application on Node.js. Prior to 1.10.1, the application hangs when receiving a Host header with a value that `@hono/node-server` can't handle well. Invalid values are those that cannot be parsed by the `URL` as a hostname such as an empty string, slashes `/`, and other strings. The version 1.10.1 includes the fix for this issue.
GHSA-hgxw-5xg3-69jx
@hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-32652 The adapter @hono/node-server allows you to run your Hono application on Node.js. Prior to 1.10.1, the application hangs when receiving a Host header with a value that `@hono/node-server` can't handle well. Invalid values are those that cannot be parsed by the `URL` as a hostname such as an empty string, slashes `/`, and other strings. The version 1.10.1 includes the fix for this issue. | CVSS3: 7.5 | 1% Низкий | почти 2 года назад |
| GHSA-hgxw-5xg3-69jx @hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed | CVSS3: 7.5 | 1% Низкий | почти 2 года назад |
Уязвимостей на страницу