9 matches found
Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components
Summary There are vulnerabilities in multiple Open Source Software OSS components consumed by IBM Planning Analytics Workspace. IBM Planning Analytics Workspace 2.0 Release 94 has addressed the applicable CVEs by upgrading or removing the vulnerable libraries. Please refer to the table in the...
@bahmutov/add-typescript-to-cypress (>=1.0.2 <=1.1.1), @betit/orion (>=1.0.0-beta.1 <=1.0.0-beta.6) +178 more potentially affected by CVE-2017-16137 via debug (>=3.0.0 <=3.0.1)
debug NPM version =3.0.0, =1.0.2, =1.0.0-beta.1, =1.0.0-beta.6, =2.0.1-SNAPSHOT.88, =0.0.4, =0.0.12, =1.0.1, =1.0.0, =1.0.0, =0.1.5, =2.8.0, =1.0.71, =1.0.10-14, =1.1.16 and more Source cves: CVE-2017-16137 Source advisory: OSV:GHSA-GXPJ-CX7G-858C...
0.8.18-p11 (=0.8.18-p12), 04_nodeblog (=1.0.0) +37638 more potentially affected by CVE-2017-16137 via debug (>=0.1.0 <=2.6.8)
debug NPM version =0.1.0, =1.0.0, =0.0.15, =1.0.4, =1.0.1, =0.0.1, =1.0.3, =0.0.1, =0.1.0, =0.1.2 - 200 =0.0.1 and more Source cves: CVE-2017-16137 Source advisory: OSV:GHSA-GXPJ-CX7G-858C...
AZL-44400 CVE-2017-16137 affecting package js-jquery 3.5.0-4
The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters to block for 2 seconds making this a low severity issue...
CVE-2017-16137 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines...
CVE-2017-16137 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines...
AZL-43819 CVE-2017-16137 affecting package nodejs-nodemon 2.0.3-4
The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters to block for 2 seconds making this a low severity issue...
UBUNTU-CVE-2017-16137
The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters to block for 2 seconds making this a low severity issue...
CVE-2017-16137
CVE-2017-16137 affects the Node.js debug module and can cause a regular expression denial of service (ReDoS) when untrusted input is passed to the formatter; susceptibility is reported as low severity but could enable a DoS by consuming CPU with around 50k characters. The connected documents show...