CVE-2020-36048
npm/engine.io
Uncontrolled Resource Consumption
engine.iO
allows attackers to cause a denial of service (resource consumption) via a POST request to the long polling transport.
All versions before 4.0.0
Upgrade to version 4.0.0 or above.
2021-01-13
source |