0.002 Low
EPSS
Percentile
55.2%
A flaw was found in nodejs-css-what. The css-what package for Node.js does not ensure that attribute parsing has a Linear Time Complexity relative to the size of the input. The highest threat from this vulnerability is to system availability.
bugzilla.redhat.com/show_bug.cgi?id=1966225
nvd.nist.gov/vuln/detail/CVE-2021-33587
www.cve.org/CVERecord?id=CVE-2021-33587