Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2021/05/19 9:14 a.m.109 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.7.0 security, bug fix, and enhancement update

Updated images which include numerous security fixes, bug fixes, and enhancements are now available for Red Hat OpenShift Container Storage 4.7.0 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

9.8CVSS6.7AI score0.69062EPSS
Exploits2References152
Node.js
Node.js
added 2020/12/30 7:13 p.m.42 views

Regular Expression Denial of Service

Overview date-and-time is a package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. Recommendation Upgrade to version version 0.14.2 or later. References - GitHub Advisor...

5CVSS4.8AI score0.02146EPSS
Exploits0Affected Software1
Circl
Circl
added 2020/12/28 10:28 p.m.7 views

CVE-2020-26289

creationtimestamp| type| source ---|---|--- 2020-12-28 22:28:55+00:00| seen| https://t.me/cibsecurity/21366...

7.5CVSS5.8AI score0.02146EPSS
Exploits0References1
NVD
NVD
added 2020/12/28 7:15 p.m.18 views

CVE-2020-26289

date-and-time is an npm package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. This is fixed in version 0.14.2...

7.5CVSS7.3AI score0.02146EPSS
Exploits0References3
CVE
CVE
added 2020/12/28 6:50 p.m.151 views

CVE-2020-26289

CVE-2020-26289 affects the npm package date-and-time. A regular-expression based parsing flaw (ReDoS) in versions before 0.14.2 can be exploited to cause a denial of service. The issue is fixed in version 0.14.2. The vulnerability details are supported by multiple sources in connected documents, ...

7.5CVSS7.3AI score0.02146EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/12/28 6:50 p.m.17 views

CVE-2020-26289 Regular expression Denial of Service in date-and-time

date-and-time is an npm package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. This is fixed in version 0.14.2...

7.5CVSS7.3AI score0.02146EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2020/12/24 8:49 p.m.6 views

@3wks/gae-node-nestjs (>=3.0.0 <=6.0.0-rc.0), @abujude/sgs-khadamati (>=1.1.8 <=1.3.1) +388 more potentially affected by CVE-2020-26289 via date-and-time (>=0.10.0 <=0.14.1)

date-and-time NPM version =0.10.0, =3.0.0, =1.1.8, =3.6.0, =0.0.0, =1.1.68, =0.1.3, =0.1.0-master.20191004191703, =1.4.1-atomist.a260p86nh.typescript-version.master.20190915212851, =0.1.0-master.20190930203939, =3.0.0-beta.14.1, =0.1.0, =2.0.0-pr.1, =0.0.1-alpha.1, =5.4.3 - @beautifulai/storage...

7.5CVSS6.7AI score0.02146EPSS
Exploits0
Rows per page
Query Builder