Lucene search
K

374 matches found

CVE
CVE
added 2018/05/31 8:0 p.m.96 views

CVE-2016-10540

CVE-2016-10540 refers to Minimatch (node) where the function minimatch(path, pattern) in Minimatch 3.0.1 and earlier is vulnerable to ReDoS through the pattern parameter. The connected IBM security bulletin reiterates the same description and CVSS base score of 7.5, noting multiple related CVEs b...

7.5CVSS7.3AI score0.01743EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/05/31 8:0 p.m.26 views

CVE-2016-10540

Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatchpath, pattern in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter...

7.4AI score0.01743EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2018/05/31 8:0 p.m.29 views

CVE-2016-10540

Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatchpath, pattern in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter...

7.5CVSS7.5AI score0.01743EPSS
Exploits1
CNVD
CNVD
added 2016/09/08 12:0 a.m.5 views

Red Hat OpenShift Enterprise Denial of Service Vulnerability (CNVD-2016-07357)

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, U.S. OpenShift Enterprise is an open source version of the private cloud. A denial of service vulnerability exists in Minimatch in Red Hat OpenShift Enterprise versions 3.1 and 3.2. An attacker could exploit...

6.7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/08/11 5:17 p.m.7 views

nodejs-minimatch: Regular expression denial-of-service

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

5.8AI score
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/08/09 10:4 a.m.26 views

Moderate: Red Hat Security Advisory: nodejs010-nodejs-minimatch security update

An update for nodejs010-nodejs-minimatch is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/08/09 10:4 a.m.5 views

nodejs-minimatch: Regular expression denial-of-service

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

5.8AI score
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/08/09 10:2 a.m.27 views

Moderate: Red Hat Security Advisory: rh-nodejs4-nodejs-minimatch security update

An update for rh-nodejs4-nodejs-minimatch is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/08/09 10:2 a.m.4 views

nodejs-minimatch: Regular expression denial-of-service

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

5.8AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2016/07/12 3:18 p.m.29 views

CVE-2016-1000023

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

3.6AI score
Exploits0References2
Node.js
Node.js
added 2016/05/25 4:37 p.m.52 views

Regular Expression Denial of Service

Overview Affected versions of minimatch are vulnerable to regular expression denial of service attacks when user input is passed into the pattern argument of minimatchpath, pattern. Proof of Concept var minimatch = require“minimatch”; // utility function for generating long strings var genstr =...

5CVSS5.4AI score0.01743EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.16 views

Fedora Update for nodejs-glob FEDORA-2013-11780

Check for the Version of nodejs-glob OpenVAS Vulnerability Test Fedora Update for nodejs-glob FEDORA-2013-11780 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

3.3CVSS0.00372EPSS
Exploits0References2
Fedora
Fedora
added 2013/07/23 1:4 a.m.17 views

[SECURITY] Fedora 19 Update: nodejs-glob-3.2.3-1.fc19

This is a glob implementation in pure JavaScript. It uses the minimatch lib rary to do its matching...

3.3CVSS1.9AI score0.00372EPSS
Exploits0
Fedora
Fedora
added 2013/07/23 1:2 a.m.17 views

[SECURITY] Fedora 18 Update: nodejs-glob-3.2.3-1.fc18

This is a glob implementation in pure JavaScript. It uses the minimatch lib rary to do its matching...

3.3CVSS1.9AI score0.00372EPSS
Exploits0
Rows per page
Query Builder