Lucene search
Veracode Vulnerability DatabaseVERACODE:40467HistoryMay 11, 2023 - 2:47 a.m.
Denial Of Services (DoS)
2023-05-1102:47:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
26
denial of services
server.ts
userver.ts
query param
application crash
0.002 Low
EPSS
Percentile
56.9%
engine.io is vulnerable to Denial Of Services (DoS). The vulnerability exists due to the uncaught exception that occurs in the handleUpgrade function of server.ts and userver.ts when providing an invalid query param, which allows an attacker to crash the application through a maliciously crafted request
Related
prion
prion
Cross site scripting
2023-05-08 21:15:00
osv
osv
CVE-2023-31125
2023-05-08 21:15:11
engine.io Uncaught Exception vulnerability
2023-05-03 21:56:51
cve
cve
CVE-2023-31125
2023-05-08 21:15:11
ibm
ibm
Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to denial of service due to [CVE-2023-31125]
2023-06-01 14:39:41
github
github
engine.io Uncaught Exception vulnerability
2023-05-03 21:56:51
redhatcve
redhatcve
CVE-2023-31125
2023-05-15 08:22:01
nvd
nvd
CVE-2023-31125
2023-05-08 21:15:11
cvelist
cvelist
CVE-2023-31125 Uncaught exception in engine.io
2023-05-08 20:21:01
nessus
nessus
Fedora 39 : magicmirror (2023-3a06c965b4)
2023-11-07 00:00:00