CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16111

The content module is a module to parse HTTP Content-* headers. It is used by the hapijs framework to provide this functionality. The module is vulnerable to regular expression denial of service when passed a specifically crafted Content-Type or Content-Disposition header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2017-16111

Content Project » Content » Version: 1.0.0

cpe:2.3:a:content_project:content:1.0.0
Content Project » Content » Version: 1.0.1

cpe:2.3:a:content_project:content:1.0.1
Content Project » Content » Version: 1.0.2

cpe:2.3:a:content_project:content:1.0.2
Content Project » Content » Version: 2.0.0

cpe:2.3:a:content_project:content:2.0.0
Content Project » Content » Version: 3.0.0

cpe:2.3:a:content_project:content:3.0.0
Content Project » Content » Version: 3.0.1

cpe:2.3:a:content_project:content:3.0.1
Content Project » Content » Version: 3.0.2

cpe:2.3:a:content_project:content:3.0.2
Content Project » Content » Version: 3.0.3

cpe:2.3:a:content_project:content:3.0.3
Content Project » Content » Version: 3.0.4

cpe:2.3:a:content_project:content:3.0.4
Content Project » Content » Version: 3.0.5

cpe:2.3:a:content_project:content:3.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16111

Products

Pricing

Contact Us