Lucene search
+L

9 matches found

OpenVAS
OpenVAS
added 2023/06/22 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2023:2578-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.68603EPSS
Exploits9References19
OSV
OSV
added 2023/06/21 11:49 a.m.10 views

SUSE-SU-2023:2578-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: bind: - Provide bind dependencies and solve installation issues on SUSE Linux Enterprise Micro - There are no source changes dracut-saltboot: - Update to version 0.1.1681904360.84ef141 Load network configuration even when missing protocol version bsc1210640...

9.8CVSS7.8AI score0.68603EPSS
Exploits9References32
Huntr
Huntr
added 2021/08/26 12:9 p.m.35 views

Inefficient Regular Expression Complexity in ramda/ramda

✍️ Description A ReDoS regular expression denial of service flaw was found in the ramda package. An attacker that is able to provide crafted input to the trim function may cause an application to consume an excessive amount of CPU. Similar attack ref: https://nvd.nist.gov/vuln/detail/CVE-2020-7753...

0.5AI score0.03732EPSS
Exploits1
Huntr
Huntr
added 2021/07/16 3:30 p.m.33 views

Inefficient Regular Expression Complexity in apidoc/apidoc-core

✍️ Description A ReDoS regular expression denial of service flaw was found in the apidoc-core package. An attacker that is able to provide crafted input to the trim function may cause an application to consume an excessive amount of CPU. Similar attack ref:...

0.2AI score0.03732EPSS
Exploits1
Node.js
Node.js
added 2021/05/10 6:48 p.m.97 views

Regular Expression Denial of Service in trim

Overview Versions of trim lower than 0.0.3 are vulnerable to Regular Expression Denial of Service ReDoS via trim. Recommendation Upgrade to version 0.0.3 or later References - CVE - GitHub Advisory...

5CVSS5.8AI score0.03732EPSS
Exploits1Affected Software1
vulnersOsv
vulnersOsv
added 2021/05/10 6:44 p.m.4 views

02strich-markdown (>=1.0.0 <=1.0.2), 10secondsofcode-custom (=1.0.0) +11494 more potentially affected by CVE-2020-7753 via trim (=0.0.1)

trim NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on trim and may be impacted: - 02strich-markdown =1.0.0, =1.0.0, =0.0.2, =0.0.1, =4.11.0, =0.1.0, =0.0.2, =0.2.0, =1.0.16, =1.2.0, =1.2.2 and more Source cves: CVE-2020-7753 Source...

7.5CVSS7.1AI score0.03732EPSS
Exploits1
Cvelist
Cvelist
added 2020/10/27 8:15 a.m.27 views

CVE-2020-7753 Regular Expression Denial of Service (ReDoS)

All versions of package trim are vulnerable to Regular Expression Denial of Service ReDoS via trim...

7.5CVSS8.3AI score0.03732EPSS
Exploits1References8
CVE
CVE
added 2020/10/27 8:15 a.m.186 views

CVE-2020-7753

CVE-2020-7753: The Connected IBM bulletin confirms that the trim package is vulnerable to Regular Expression Denial of Service (ReDoS) via trim() in all versions. It assigns a high base score (7.5) and references IBM X-Force data; however, the bulletin does not publicly specify a patched version ...

7.5CVSS7.5AI score0.03732EPSS
Exploits1References8Affected Software1
vulnersOsv
vulnersOsv
added 2020/10/11 10:24 a.m.4 views

02strich-markdown (>=1.0.0 <=1.0.2), 10secondsofcode-custom (=1.0.0) +11494 more potentially affected by CVE-2020-7753 via trim (=0.0.1)

trim NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on trim and may be impacted: - 02strich-markdown =1.0.0, =1.0.0, =0.0.2, =0.0.1, =4.11.0, =0.1.0, =0.0.2, =0.2.0, =1.0.16, =1.2.0, =1.2.2 and more Source cves: CVE-2020-7753 Source...

7.5CVSS7.1AI score0.03732EPSS
Exploits1
Rows per page
Query Builder