You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description: The application performs some repetitive task in a loop, and defines the number of times to perform the loop according to user input. A very high value could cause the application to get stuck in the loop and to be unable to continue to other operations.
Impact: An attacker could input a very high value, potentially causing a denial of service (DoS).
Remediation:
Recommendation · Ideally, don’t base a loop on user-provided data. If it is necessary to do so, the user input must be first validated and its range should be limited.
Risk Rating: Medium
Category Security: Misconfiguration
Description: The application performs some repetitive task in a loop, and defines the number of times to perform the loop according to user input. A very high value could cause the application to get stuck in the loop and to be unable to continue to other operations.
Impact: An attacker could input a very high value, potentially causing a denial of service (DoS).
Remediation:
Recommendation · Ideally, don’t base a loop on user-provided data. If it is necessary to do so, the user input must be first validated and its range should be limited.
Findings:
The following screenshot contains the finding related to this file
https://github.com/videojs/mux.js/blob/v7.1.0/lib/m2ts/metadata-stream.js#L187
The text was updated successfully, but these errors were encountered: