Skip to main content

Muhammara

3 CVEs product

Monthly

CVE-2022-41957 npm HIGH PATCH This Week

Muhammara is a node module with c/cpp bindings to modify PDF with JavaScript for node or electron. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Muhammara Hummus
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2022-25892 npm HIGH PATCH This Week

The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Muhammara
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2022-25885 npm HIGH POC PATCH This Week

The package muhammara before 2.6.0; all versions of package hummus are vulnerable to Denial of Service (DoS) when PDFStreamForResponse() is used with invalid data. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Muhammara
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Muhammara is a node module with c/cpp bindings to modify PDF with JavaScript for node or electron. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Muhammara Hummus
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Muhammara
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

The package muhammara before 2.6.0; all versions of package hummus are vulnerable to Denial of Service (DoS) when PDFStreamForResponse() is used with invalid data. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Muhammara
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy