High severityNVD Advisory· Published Mar 16, 2022· Updated Sep 16, 2024
Denial of Service (DoS)
CVE-2022-21164
Description
The package node-lmdb before 0.9.7 are vulnerable to Denial of Service (DoS) when defining a non-invokable ToString value, which will cause a crash during type check.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
node-lmdbnpm | < 0.9.7 | 0.9.7 |
Affected products
2- node-lmdb/node-lmdbdescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-32j9-6qqm-mq9gghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-21164ghsaADVISORY
- github.com/Venemo/node-lmdb/commit/97760104c0fd311206b88aecd91fa1f59fe2b85aghsax_refsource_MISCWEB
- snyk.io/vuln/SNYK-JS-NODELMDB-2400723ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.