Headline

GHSA-qpgc-xh7j-52q8: node-opcua DoS vulnerability via message with memory allocation that exceeds v8's memory limit

The package node-opcua before 2.74.0 are vulnerable to Denial of Service (DoS) by sending a specifically crafted OPC UA message with a special OPC UA NodeID, when the requested memory allocation exceeds the v8’s memory limit.

2 years ago

ghsa

Open in Source

#vulnerability #dos #nodejs #git

GitHub Advisory Database
GitHub Reviewed
CVE-2022-25231

node-opcua DoS vulnerability via message with memory allocation that exceeds v8’s memory limit

High severity GitHub Reviewed Published Aug 24, 2022 • Updated Sep 1, 2022

Package

npm node-opcua (npm)

Affected versions

< 2.74.0

Description

2 years ago

CVE

Open in Source

#vulnerability #web #mac #ddos #dos #nodejs #js #git #java

ghsa: Latest News

GHSA-27wf-5967-98gx: Kubernetes kubelet arbitrary command execution

2 days ago

ghsa

GHSA-mr95-vfcf-fx9p: Apache Answer: Predictable Authorization Token Using UUIDv1

2 days ago

ghsa

GHSA-pqhp-25j4-6hq9: smol-toml has a Denial of Service via malicious TOML document using deeply nested inline tables

2 days ago

ghsa

GHSA-v5h2-q2w4-gpcx: Sentry improper error handling leaks Application Integration Client Secret

2 days ago

ghsa

GHSA-8w49-h785-mj3c: Tornado has an HTTP cookie parsing DoS vulnerability

2 days ago

ghsa

Headline

GHSA-qpgc-xh7j-52q8: node-opcua DoS vulnerability via message with memory allocation that exceeds v8's memory limit

Related news

ghsa: Latest News