Skip to main content

Jpeg Js

2 CVEs product

Monthly

CVE-2022-25851 npm HIGH POC PATCH This Week

The package jpeg-js before 0.4.4 are vulnerable to Denial of Service (DoS) where a particular piece of input will cause to enter an infinite loop and never return. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Jpeg Js
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2020-8175 npm MEDIUM POC PATCH This Month

Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Jpeg Js
NVD
CVSS 3.1
5.5
EPSS
1.1%
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

The package jpeg-js before 0.4.4 are vulnerable to Denial of Service (DoS) where a particular piece of input will cause to enter an infinite loop and never return. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Jpeg Js
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM POC PATCH This Month

Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Jpeg Js
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy