Rewterz Threat Alert – North Korean Threat Actor Group, APT43, Funds Its Espionage Activities Through Cybercrime – Active IOCs
April 3, 2023Rewterz Threat Alert – Rhadamanthys Stealer – Active IOCs
April 4, 2023Rewterz Threat Alert – North Korean Threat Actor Group, APT43, Funds Its Espionage Activities Through Cybercrime – Active IOCs
April 3, 2023Rewterz Threat Alert – Rhadamanthys Stealer – Active IOCs
April 4, 2023Severity
High
Analysis Summary
CVE-2022-36060
Node.js matrix-react-sdk module is vulnerable to a denial of service, caused by a prototype pollution. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-36060
Affected Vendors
Node.js
Affected Products
- matrix.org matrix-react-sdk 3.50.0
- matrix.org matrix-react-sdk 3.51.0
- matrix.org matrix-react-sdk 3.52.0
Remediation
Refer to Node.js matrix-react-sdk module GIT Repository for patch, upgrade or suggested workaround information.