← Back to CVE List

CVE-2021-27191

Published: 2021-02-11T18:15Z
Last Modified: 2024-11-21T05:57Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The get-ip-range package before 4.0.0 for Node.js is vulnerable to denial of service (DoS) if the range is untrusted input. An attacker could send a large range (such as 128.0.0.0/1) that causes resource exhaustion. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt