HIGH🇵🇱 Wersja polska

CVE-2022-25885

CVSS 7.5v3.1pub. 2022-11-01upd. 2025-05-05

The package muhammara before 2.6.0; all versions of package hummus are vulnerable to Denial of Service (DoS) when PDFStreamForResponse() is used with invalid data.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Muhammara Project Muhammara

    APP
    Muhammara Project
    < 2.6.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2022-41957HIGH7.5ten sam produkt

Muhammara is a node module with c/cpp bindings to modify PDF with JavaScript for node or electron. The package...

CVE-2022-25892HIGH7.5ten sam produkt

The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable...