Headline
GHSA-mj6p-3pc9-wf5m: proxy denial of service vulnerability
A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.
proxy denial of service vulnerability
Moderate severity GitHub Reviewed Published May 30, 2023 to the GitHub Advisory Database • Updated Jun 6, 2023
Related news
CVE-2023-2968: Undefined variable usage in npm proxy leads to remote denial of service | XRAY-520917
A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.