Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2018-06-07 CVE-2017-16138 Resource Exhaustion vulnerability in Mime Project Mime
The mime module < 1.4.1, 2.0.1, 2.0.2 is vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.
network
low complexity
mime-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16137 Resource Exhaustion vulnerability in Debug Project Debug
The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter.
network
low complexity
debug-project CWE-400
5.3
5.3
2018-06-07 CVE-2017-16136 Resource Exhaustion vulnerability in Expressjs Method-Override
method-override is a module used by the Express.js framework to let you use HTTP verbs such as PUT or DELETE in places where the client doesn't support it.
network
low complexity
expressjs CWE-400
7.5
7.5
2018-06-07 CVE-2017-16129 Resource Exhaustion vulnerability in Superagent Project Superagent
The HTTP client module superagent is vulnerable to ZIP bomb attacks.
network
high complexity
superagent-project CWE-400
5.9
5.9
2018-06-07 CVE-2017-16119 Resource Exhaustion vulnerability in Fresh Project Fresh
Fresh is a module used by the Express.js framework for HTTP response freshness testing.
network
low complexity
fresh-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16118 Resource Exhaustion vulnerability in Forwarded Project Forwarded 0.1.0/0.1.1
The forwarded module is used by the Express.js framework to handle the X-Forwarded-For header.
network
low complexity
forwarded-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16117 Resource Exhaustion vulnerability in Slug Project Slug
slug is a module to slugify strings, even if they contain unicode.
network
low complexity
slug-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16116 Resource Exhaustion vulnerability in String Project String
The string module is a module that provides extra string operations.
network
low complexity
string-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16115 Resource Exhaustion vulnerability in Timespan Project Timespan
The timespan module is vulnerable to regular expression denial of service.
network
low complexity
timespan-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16114 Resource Exhaustion vulnerability in Marked Project Marked
The marked module is vulnerable to a regular expression denial of service.
network
low complexity
marked-project CWE-400
7.5
7.5