Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. Exploiting this vulnerability can lead to a process crash.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
node-speaker 安全漏洞
Vulnerability Description
node-speaker是Nathan Rajlich个人开发者的一个可写入流实例。用于接收 PCM 音频数据并将其输出到扬声器。 node-speaker存在安全漏洞,该漏洞源于当提供意外的输入类型时,容易受到拒绝服务(DoS)攻击,从而导致进程崩溃。
CVSS Information
N/A
Vulnerability Type
N/A