cve 2024 45590

CVE-2024-45590 is a high-severity denial-of-service vulnerability in the Node.js middleware body-parser, which is widely used in Express applications and other projects to parse HTTP request bodies. The issue affects versions prior to 1.20.3 and can be exploited via specially crafted URL-encoded request bodies, leading to resource exhaustion and potential service disruption. Users are advised to upgrade to body-parser 1.20.3 or later immediately, or apply strong mitigations to prevent DoS attacks. This tag covers discussions and guidance related to this specific CVE, including upgrade steps and security best practices for Node.js developers.