Description
protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.
Remediation
References
https://hackerone.com/reports/319576
Related Vulnerabilities
CVE-2020-15170 Vulnerability in maven package com.ctrip.framework.apollo:apollo-adminservice
CVE-2022-31112 Vulnerability in npm package parse-server
CVE-2020-7676 Vulnerability in maven package org.webjars.bowergithub.angular:angular
CVE-2023-46998 Vulnerability in maven package org.webjars.bower:bootbox