0.001 Low
EPSS
Percentile
36.8%
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the devcert npm package, when an attacker is able to supply arbitrary input to the certificateFor method
github.com/davewasmer/devcert
github.com/davewasmer/devcert/commit/b0763215f6683271d296fda98f7ef7bcd4a55977
nvd.nist.gov/vuln/detail/CVE-2022-1929
research.jfrog.com/vulnerabilities/devcert-redos-xray-211352