CVE-2017-16113

CVE-2017-16113

Vendor Hackerone

Product parsejson node module

Weakness CWE-400

Published June 7, 2018

Last update September 16, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The parsejson module is vulnerable to regular expression denial of service when untrusted user input is passed into it to be parsed.

Key dates

02Disclosure timeline

June 7, 2018 CVE published

September 16, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-16113 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/400.html

Related vulnerabilities

04Related CVE

CVE-2025-46727 Unbounded-Parameter DoS in Rack::QueryParser CVE-2025-4444 Tor Onion Service Descriptor resource consumption CVE-2022-1708 CVE-2019-12714 Cisco IC3000 Industrial Compute Gateway Denial of Service Vulnerability CVE-2025-20370 Denial of Service (DoS) through Multiple LDAP Bind Requests in Splunk Enterprise