Description
The content module is a module to parse HTTP Content-* headers. It is used by the hapijs framework to provide this functionality. The module is vulnerable to regular expression denial of service when passed a specifically crafted Content-Type or Content-Disposition header.
Remediation
References
https://nodesecurity.io/advisories/530
Related Vulnerabilities
CVE-2019-10757 Vulnerability in maven package org.webjars.npm:knex
CVE-2017-16141 Vulnerability in npm package lab6drewfusbyu
CVE-2019-16776 Vulnerability in maven package org.webjars.npm:npm
CVE-2023-35145 Vulnerability in maven package org.jenkins-ci.plugins:sonargraph-integration
CVE-2022-25767 Vulnerability in maven package com.bstek.ureport:ureport2-console