File Upload Crash Vulnerability in Parse Server

File Upload Crash Vulnerability in Parse Server

CVE-2023-46119 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Parse Server crashes when uploading a file without extension. This vulnerability has been patched in versions 5.5.6 and 6.3.1.

Learn more about our Cis Benchmark Audit For Server Software.