0.002 Low
EPSS
Percentile
52.1%
There is a heap based buffer over-read in lexer.hpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack.
bugzilla.redhat.com/show_bug.cgi?id=1470714