0.001 Low
EPSS
Percentile
46.8%
Version of ssri prior to 5.2.2 are vulnerable to regular expression denial of service (ReDoS) when using strict mode.
ssri
Update to version 5.2.2 or later.
github.com/advisories/GHSA-325j-24f4-qv5x
github.com/zkat/ssri
github.com/zkat/ssri/commit/d0ebcdc22cb5c8f47f89716d08b3518b2485d65d
github.com/zkat/ssri/issues/10
nvd.nist.gov/vuln/detail/CVE-2018-7651
www.npmjs.com/advisories/565