0.002 Low
EPSS
Percentile
61.8%
There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.
bugzilla.redhat.com/show_bug.cgi?id=1471780
github.com/sass/libsass/issues/2445