Name of the Vulnerable Software and Affected Versions node-sass versions prior to 4.13.1

Description The issue allows attackers to crash the system's running Node process, leading to Denial of Service. This can be achieved by passing crafted objects to the renderSync function, which may trigger C++ assertions in CustomImporterBridge::get importer entry and CustomImporterBridge::post process return value that crash the Node process.

Recommendations Upgrade to version 4.13.1 or later.