CVE-2022-22138 in fast-string-searchالمعلومات

الملخص

بحسب MITRE • 18/06/2022

All versions of package fast-string-search are vulnerable to Denial of Service (DoS) when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

Snyk

حجز

24/02/2022

إفشاء

18/06/2022

الاعتدال

تمت الموافقة

إدخال

VDB-202364

EPSS

0.01152

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!