Lucene search
Ssri Security Vulnerabilities
cve
index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash...
5.9CVSS
5.5AI Score
0.001EPSS
2022-10-03 04:21 PM
28
cve
ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict...
7.5CVSS
8.2AI Score
0.002EPSS
2021-03-12 10:15 PM
255
10