Description
Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.
Remediation
References
https://nodesecurity.io/advisories/323
https://github.com/nodejitsu/node-http-proxy/pull/101
Related Vulnerabilities
CVE-2016-1181 Vulnerability in maven package struts:struts
CVE-2021-42010 Vulnerability in maven package org.apache.heron:heron-api
CVE-2018-1317 Vulnerability in maven package org.apache.zeppelin:zeppelin
CVE-2023-48796 Vulnerability in maven package org.apache.dolphinscheduler:dolphinscheduler-worker