← Back

Jpeg Js Project

jpeg-js_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Jpeg Js
jpeg-js
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-25851
1Jpeg Js Project
1Jpeg Js
Nov 21, 2024
Jun 10, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The package jpeg-js before 0.4.4 are vulnerable to Denial of Service (DoS) where a particular piece of input will cause to enter an infinite loop and never return.
CVE-2020-8175
1Jpeg Js Project
1Jpeg Js
Nov 21, 2024
Jul 24, 2020
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.