Количество 2
Количество 2
CVE-2026-24006
Seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, serialization of objects with extreme depth can exceed the maximum call stack limit. In version 1.4.1, Seroval introduces a `depthLimit` parameter in serialization/deserialization methods. An error will be thrown if the depth limit is reached.
GHSA-3j22-8qj3-26mx
Seroval affected by Denial of Service via Deeply Nested Objects
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-24006 Seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, serialization of objects with extreme depth can exceed the maximum call stack limit. In version 1.4.1, Seroval introduces a `depthLimit` parameter in serialization/deserialization methods. An error will be thrown if the depth limit is reached. | CVSS3: 7.5 | 0% Низкий | 18 дней назад |
| GHSA-3j22-8qj3-26mx Seroval affected by Denial of Service via Deeply Nested Objects | CVSS3: 7.5 | 0% Низкий | 17 дней назад |
Уязвимостей на страницу