« List of all CVEs

CVE-2020-8251

Published: 9/18/2020 Last updated: 4/30/2025 Reserved: 1/28/2020

Node.js < 14.11.0 is vulnerable to HTTP denial of service (DoS) attacks based on delayed requests submission which can make the server unable to accept new connections.

CNA assigner: hackerone (36234546-b8fa-4601-9d6f-f4e334aa8ea1) Requested by: n/a

Opam packages affected (1)

conf-npm

Products affected (2)

Product Vendor Version
Node NodeJS < 15
Node NodeJS < a405c6f0229526160aa3f177f65e20c86fce84c5

References (20)