Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-36313

Published: 21/07/2022 Updated: 27/10/2022
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to File-type Project

Vulnerability Summary

An issue exists in the file-type package prior to 16.5.4 and 17.x prior to 17.1.3 for Node.js. A malformed MKV file could cause the file type detector to get caught in an infinite loop. This would make the application become unresponsive and could be used to cause a DoS attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

file-type project file-type

Vendor Advisories

Red Hat: Important: Red Hat Data Grid 8.4.1 security update
Synopsis Important: Red Hat Data Grid 841 security update Type/Severity Security Advisory: Important Topic An update for Red Hat Data Grid 8 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating ...

References

CWE-835https://github.com/sindresorhus/file-type/releases/tag/v16.5.4https://github.com/sindresorhus/file-type/releases/tag/v17.1.3https://www.npmjs.com/package/file-typehttps://security.netapp.com/advisory/ntap-20220909-0005/https://access.redhat.com/errata/RHSA-2023:0713https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook