Security Advisory

CVE-2019-17592

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-14 19:59:21

Last updated 2024-08-05 01:47:13

Assigner mitre

State PUBLISHED

Description

The csv-parse module before 4.4.6 for Node.js is vulnerable to Regular Expression Denial of Service. The __isInt() function contains a malformed regular expression that processes large crafted input very slowly. This is triggered when using the cast option.

← Browse all CVEs View on cve.org ↗