Skip to content
This repository has been archived by the owner on Jun 2, 2023. It is now read-only.

Cx89601373-08db @ Npm-debug-2.6.9 #16

Closed
yangricardo opened this issue Apr 5, 2023 · 0 comments
Closed

Cx89601373-08db @ Npm-debug-2.6.9 #16

yangricardo opened this issue Apr 5, 2023 · 0 comments

Comments

@yangricardo
Copy link
Owner

Vulnerable Package issue exists @ Npm-debug-2.6.9 in branch main

NPM debug prior to 4.3.0 has a Memory Leak when creating debug instances inside a function which can have a significant impact in the Availability. This happens since the function debug in the file src/common.js does not free up used memory.

Namespace: yangricardo
Repository: nextjs-tailwind-reacthook-form-ant-design-template
Repository Url: https://github.com/yangricardo/nextjs-tailwind-reacthook-form-ant-design-template
CxAST-Project: yangricardo/nextjs-tailwind-reacthook-form-ant-design-template
CxAST platform scan: 8fc1cf6c-819f-4734-b20d-87c2af04c0b2
Branch: main
Application: nextjs-tailwind-reacthook-form-ant-design-template
Severity: HIGH
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-401


Additional Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
Remediation Upgrade Recommendation: 3.1.0


References
Issue
Pull request
Commit
POC/Exploit

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Development

No branches or pull requests

1 participant