CVE-2022-25851

Published June 10th, 2022

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

MEDIUM

Affected

PROJECT

Description

The package jpeg-js before 0.4.4 are vulnerable to Denial of Service (DoS) where a particular piece of input will cause to enter an infinite loop and never return.

jpeg-js/jpeg-js

A pure javascript JPEG encoder and decoder for node.js

GitHub

587