Vulnerabilities > CVE-2020-27543 - Improper Handling of Exceptional Conditions vulnerability in Restify-Paginate Project Restify-Paginate 0.0.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
The restify-paginate package 0.0.5 for Node.js allows remote attackers to cause a Denial-of-Service by omitting the HTTP Host header. A Restify-based web service would crash with an uncaught exception.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
References
- https://github.com/paulvarache/restify-paginate/
- https://github.com/paulvarache/restify-paginate/
- https://github.com/secoats/cve/tree/master/CVE-2020-27543_dos_restify-paginate
- https://github.com/secoats/cve/tree/master/CVE-2020-27543_dos_restify-paginate
- https://security.netapp.com/advisory/ntap-20210401-0002/
- https://security.netapp.com/advisory/ntap-20210401-0002/
- https://www.npmjs.com/package/restify-paginate
- https://www.npmjs.com/package/restify-paginate