Description
All versions of package mongo-express are vulnerable to Denial of Service (DoS) when exporting an empty collection as CSV, due to an unhandled exception, leading to a crash.
Remediation
References
https://snyk.io/vuln/SNYK-JS-MONGOEXPRESS-1085403
Related Vulnerabilities
CVE-2019-16335 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2022-31170 Vulnerability in maven package org.webjars.npm:openzeppelin__contracts
CVE-2020-15095 Vulnerability in maven package org.webjars:npm
CVE-2018-3753 Vulnerability in npm package merge-objects
CVE-2019-10358 Vulnerability in maven package org.jenkins-ci.main:maven-plugin