CVE-2026-48038정보

요약

\~에 의해 MITRE • 2026. 07. 14.

joi is a schema description language and data validator for JavaScript. Prior to 17.13.4 and 18.2.1, denial of service is possible via an untrapped exception in services validating user-supplied JSON or object input with recursive link() schemas. When validate() is called without try/catch in a request handler, deeply nested input can trigger an unhandled RangeError and potentially crash the process; lower-impact paths using validateAsync() or try/catch produce a RangeError instead of a structured ValidationError. This issue is fixed in versions 17.13.4 and 18.2.1.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

출처

Might our Artificial Intelligence support you?

Check our Alexa App!