Description
protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.
Remediation
References
https://hackerone.com/reports/319576
Related Vulnerabilities
CVE-2020-28472 Vulnerability in maven package org.webjars.bower:aws-sdk
CVE-2018-11770 Vulnerability in maven package org.apache.spark:spark-core
CVE-2021-23337 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash
CVE-2018-14042 Vulnerability in maven package org.webjars.bower:bootstrap-sass
CVE-2023-31581 Vulnerability in maven package com.usthe.sureness:sureness-core