Devcert is a package for SSL development from npm, Inc. A denial of service vulnerability exists in versions prior to Devcert 1.2.1, which stems from triggering an exponential ReDoS (regular expression denial of service) in the Devcert package. An attacker could exploit this vulnerability to cause a denial of service of the application.
CPE | Name | Operator | Version |
---|---|---|---|
npm devcert | lt | 1.2.1 |