CVE-2018-3737

sshpk is vulnerable to ReDoS when parsing crafted invalid public keys.
References
Link Resource
https://hackerone.com/reports/319593 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:joyent:sshpk:*:*:*:*:*:node.js:*:*

Information

Published : 2018-06-07 02:29

Updated : 2023-01-30 04:06


NVD link : CVE-2018-3737

Mitre link : CVE-2018-3737

Products Affected
No products.
CWE
CWE-185

Incorrect Regular Expression