Moderate severityNVD Advisory· Published Jul 24, 2020· Updated Aug 4, 2024
CVE-2020-8175
CVE-2020-8175
Description
Uncontrolled resource consumption in jpeg-js before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
jpeg-jsnpm | < 0.4.0 | 0.4.0 |
Affected products
2- jpeg-js/jpeg-jsdescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-w7q9-p3jq-fmhmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-8175ghsaADVISORY
- github.com/eugeneware/jpeg-js/commit/135705b1510afb6cb4275a4655d92c58f6843e79ghsaWEB
- hackerone.com/reports/842462ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.