CVE-2018-3738

protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.
References
Link Resource
https://hackerone.com/reports/319576 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:protobufjs_project:protobufjs:*:*:*:*:*:node.js:*:*

Information

Published : 2018-06-07 02:29

Updated : 2023-01-30 04:07


NVD link : CVE-2018-3738

Mitre link : CVE-2018-3738

Products Affected
No products.
CWE
CWE-185

Incorrect Regular Expression