Description
protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.
Remediation
References
https://hackerone.com/reports/319576
Related Vulnerabilities
CVE-2021-40369 Vulnerability in maven package org.apache.jspwiki:jspwiki-main
CVE-2021-31812 Vulnerability in maven package org.apache.pdfbox:pdfbox
CVE-2017-5954 Vulnerability in npm package serialize-to-js
CVE-2018-19057 Vulnerability in npm package simplemde
CVE-2022-23944 Vulnerability in maven package org.apache.shenyu:shenyu-common