Description
Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.
Remediation
References
https://github.com/nodejitsu/node-http-proxy/pull/101
https://nodesecurity.io/advisories/323
Related Vulnerabilities
CVE-2022-43429 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-for-total-test
CVE-2023-39156 Vulnerability in maven package org.jenkins-ci.plugins:bazaar
CVE-2021-40823 Vulnerability in npm package matrix-js-sdk
CVE-2020-24750 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind