VYPR
High severityNVD Advisory· Published Nov 1, 2022· Updated May 6, 2025

Denial of Service (DoS)

CVE-2022-25892

Description

The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be parsed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
muhammaranpm
< 2.6.12.6.1
muhammaranpm
>= 3.0.0, < 3.1.13.1.1
hummusnpm
< 1.0.1111.0.111

Affected products

3

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.