Headline

GHSA-qpgc-xh7j-52q8: node-opcua DoS vulnerability via message with memory allocation that exceeds v8's memory limit

The package node-opcua before 2.74.0 are vulnerable to Denial of Service (DoS) by sending a specifically crafted OPC UA message with a special OPC UA NodeID, when the requested memory allocation exceeds the v8’s memory limit.

2 years ago

ghsa

Open in Source

#vulnerability #dos #nodejs #git

GitHub Advisory Database
GitHub Reviewed
CVE-2022-25231

node-opcua DoS vulnerability via message with memory allocation that exceeds v8’s memory limit

High severity GitHub Reviewed Published Aug 24, 2022 • Updated Sep 1, 2022

Package

npm node-opcua (npm)

Affected versions

< 2.74.0

Description

2 years ago

CVE

Open in Source

#vulnerability #web #mac #ddos #dos #nodejs #js #git #java

ghsa: Latest News

GHSA-pxg6-pf52-xh8x: cookie accepts cookie name, path, and domain with out of bounds characters

2 days ago

ghsa

GHSA-q898-frwq-f3qp: Minecraft MOTD Parser's HtmlGenerator vulnerable to XSS

2 days ago

ghsa

GHSA-8xq9-g7ch-35hg: Parse Server's custom object ID allows to acquire role privileges

2 days ago

ghsa

GHSA-8h22-6qwx-q4w9: OpenStack Ironic fails to verify checksums of supplied image_source URLs

2 days ago

ghsa

GHSA-wwcp-26wc-3fxm: JSON-lib mishandles an unbalanced comment string

2 days ago

ghsa

Headline

GHSA-qpgc-xh7j-52q8: node-opcua DoS vulnerability via message with memory allocation that exceeds v8's memory limit

Related news

ghsa: Latest News