CVE-2018-12121 -- nodejsDeprecated |
ID: oval:org.secpod.oval:def:1900750 | Date: (C)2019-03-05 (M)2024-04-17 |
Class: VULNERABILITY | Family: unix |
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a combination of many requests with maximum sized headers , and carefully timed completion of the headers, it is possible to cause the HTTP server to abort from heap allocation failure. Attack potential is mitigated by the use of a load balancer or other proxy layer.
Platform: |
Ubuntu 16.04 |
Ubuntu 18.10 |
Ubuntu 14.04 |
Ubuntu 18.04 |