01642 06 11 11 Arrange Call

Denial of Service (DoS) Vulnerability in lite-server Package

CVE-2022-25940 · HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2022-25940

All versions of package lite-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.

Learn more about our Cis Benchmark Audit For Server Software.