High severityNVD Advisory· Published Mar 4, 2018· Updated Aug 5, 2024
CVE-2018-7560
CVE-2018-7560
Description
index.js in the Anton Myshenin aws-lambda-multipart-parser NPM package before 0.1.2 has a Regular Expression Denial of Service (ReDoS) issue via a crafted multipart/form-data boundary string.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Members only
The AI Insight narrative is available to signed-in members. Sign in or create a free account to read it.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
aws-lambda-multipart-parsernpm | < 0.1.2 | 0.1.2 |
Affected products
1Patches
Members only
Discovered fix commits and diffs is available to signed-in members. Sign in or create a free account to read it.
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
3- github.com/advisories/GHSA-6jqp-j69q-pm62ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-7560ghsaADVISORY
- github.com/myshenin/aws-lambda-multipart-parser/commit/56ccb03af4dddebc2b2defb348b6558783d5757eghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.