Lucene search
GoogleOSV:GHSA-WM7H-9275-46V2HistoryMay 21, 2022 - 12:00 a.m.
Crash in HeaderParser in dicer
2022-05-2100:00:25
Google
osv.dev
583
0.002 Low
EPSS
Percentile
61.9%
This affects all versions of the package dicer. A malicious attacker can send a modified form to the server and crash the Node.js service. A complete denial of service can be achieved by sending the malicious form in a loop.
| CPE | Name | Operator | Version |
|---|---|---|---|
| org.webjars.npm:dicer | eq | 0.3.0 | |
| dicer | le | 0.3.1 | |
| org.webjars.npm:dicer | eq | 0.2.5 |
Related
ubuntucve
ubuntucve
CVE-2022-24434
2022-05-20 00:00:00
cvelist
cvelist
CVE-2022-24434 Denial of Service (DoS)
2022-05-20 00:00:00
github
github
Crash in HeaderParser in dicer
2022-05-21 00:00:25
nvd
nvd
CVE-2022-24434
2022-05-20 20:15:09
ibm
ibm
Security Bulletin: CVE-2022-24434 An issue was discovered in the npm package dicer
2023-11-17 21:04:58
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Node.js dicer module denial of service(CVE-2022-24434)
2022-12-07 10:17:26
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 16:52:45
veracode
veracode
Denial Of Service (DoS)
2022-05-23 11:08:32
redhatcve
redhatcve
CVE-2022-24434
2023-05-08 18:21:42
prion
prion
Code injection
2022-05-20 20:15:00
debiancve
debiancve
CVE-2022-24434
2022-05-20 20:15:09
cve
cve
CVE-2022-24434
2022-05-20 20:15:09
nessus
nessus
IBM Cognos Analytics Multiple Vulnerabilities (6986505)
2023-05-12 00:00:00