0.001 Low
EPSS
Percentile
44.7%
Affected versions of content are vulnerable to a regular expression denial of service when parsing malicious Content-Type and Content-Disposition headers.
content
Content-Type
Content-Disposition
Update to version 3.0.6 or later.
github.com/advisories/GHSA-x6wp-rfwh-hcx7
nvd.nist.gov/vuln/detail/CVE-2017-16111
www.npmjs.com/advisories/530