undici is vulnerable to Regular Expression Denial Of Service (ReDoS). The vulnerability exists due to an insecure Regex pattern used in the headerValueNormalize
function in headers.js
, which allows an attacker to crash the application by providing a malicious input.