CVE-2017-16115

🗓️ 07 Jun 2018 02:02:29Reported by [email protected]Type

Timespan module vulnerable to regular expression denial of service with 50k characters user inpu

Reporter	Title	Published	Views	Family All 7
OSV	Regular Expression Denial of Service in timespan	29 Aug 201823:04	–	osv
Veracode	Regular Expression Denial Of Service (ReDoS)	26 Sep 201702:37	–	veracode
Prion	Design/Logic Flaw	7 Jun 201802:29	–	prion
Cvelist	CVE-2017-16115	7 Jun 201802:00	–	cvelist
CVE	CVE-2017-16115	7 Jun 201802:29	–	cve
Node.js	Regular Expression Denial of Service	21 Sep 201720:44	–	nodejs
Github Security Blog	Regular Expression Denial of Service in timespan	29 Aug 201823:04	–	github

Nvd

Node

timespan_project timespannode.js

Source	Link
nodesecurity	www.nodesecurity.io/advisories/533
github	www.github.com/indexzero/TimeSpan.js/issues/10

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Jun 2018 02:29Current

7.5High risk

Vulners AI Score7.5

CVSS25

CVSS37.5

EPSS0.0028

CWE-400