Vulnerable Package issue exists @ Npm-debug-3.2.7 in branch main
NPM debug prior to 4.3.0 has a Memory Leak when creating debug instances inside a function which can have a significant impact in the Availability. This happens since the function debug in the file src/common.js does not free up used memory.
Vulnerable Package issue exists @ Npm-debug-3.2.7 in branch main
NPM
debug
prior to 4.3.0 has a Memory Leak when creatingdebug
instances inside a function which can have a significant impact in the Availability. This happens since the functiondebug
in the filesrc/common.js
does not free up used memory.Namespace: westonphillips Repository: CheckmarxOnePOV Repository Url: https://github.com/westonphillips/CheckmarxOnePOV CxAST-Project: westonphillips/CheckmarxOnePOV CxAST platform scan: 6a8170d0-38fa-4efc-81df-42628474102c Branch: main Application: CheckmarxOnePOV Severity: HIGH State: NOT_IGNORED Status: RECURRENT CWE: CWE-401
Additional Info Attack vector: NETWORK Attack complexity: LOW Confidentiality impact: NONE Availability impact: HIGH Remediation Upgrade Recommendation: 4.3.0
References Issue Pull request Commit POC/Exploit