CVE-2022-24434

Publication date 20 May 2022

Last updated 25 August 2025


Ubuntu priority

Negligible

Why this priority?

Cvss 3 Severity Score

7.5 · High

Score breakdown

Description

This affects all versions of package dicer. A malicious attacker can send a modified form to server, and crash the nodejs service. An attacker could sent the payload again and again so that the service continuously crashes.

Status

Package Ubuntu Release Status
node-superagent 22.04 LTS jammy
Not affected
21.10 impish
Not affected
20.04 LTS focal
Not affected
18.04 LTS bionic
Not affected

Severity score breakdown

CVSS version: CVSS v3.0

Base score 7.5 · High

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H


Access our resources on patching vulnerabilities