CVE-2017-1000048
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000048
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000048.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-1000048
- Aliases
- Downstream
- Published
- 2017-07-17T13:18:17Z
- Modified
- 2025-10-21T04:05:03.669689Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
the web framework using ljharb's qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash.
- References
Affected packages
Git / github.com/ljharb/qs
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ljharb/qs
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected