CVE-2018-7560

Name of the Vulnerable Software and Affected Versions aws-lambda-multipart-parser versions prior to 0.1.2

Description The issue is a Regular Expression Denial of Service (ReDoS) problem that can be triggered by a crafted multipart/form-data boundary string. This can affect the index.js file in the aws-lambda-multipart-parser NPM package.

Recommendations For versions prior to 0.1.2, update to version 0.1.2 or later to resolve the issue. As a temporary workaround, consider restricting the handling of multipart/form-data boundary strings to minimize the risk of exploitation.