7 matches found
@0soft/zero-material-ui (>=0.0.1 <=0.0.25), @0xgg/echomd (>=1.0.0 <=1.0.4) +423 more potentially affected by CVE-2021-23353 via jspdf (>=1.0.272 <=2.3.0)
jspdf NPM version =1.0.272, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.0.0-nightly-2020982921, =0.0.0-nightly-20215272227, =0.0.0-nightly-2021533445, =0.0.0-nightly-2021242250, =0.0.0-nightly-20214822614, =0.0.0-nightly-2020972106, =0.0.0-nightly-20213723126, =0.0.0-nightly-20214822614,...
CVE-2021-23353
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353
The CVE-2021-23353 entry concerns jspdf before version 2.3.1, where a Regular Expression Denial of Service (ReDoS) is possible via the addImage function. Multiple sources (NVD, Node.js advisory, GitHub advisory, OSV, Veracode, CVE list) confirm the affected component and the vulnerability class. ...
CVE-2021-23353 Regular Expression Denial of Service (ReDoS)
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
@0soft/zero-material-ui (>=0.0.1 <=0.0.25), @abegalinov/backoffice-skeleton (>=0.1.0 <=0.4.9) +305 more potentially affected by CVE-2021-23353 via jspdf (>=2.0.0 <=2.3.0)
jspdf NPM version =2.0.0, =0.0.1, =0.1.0, =0.0.1, =0.0.0-nightly-2020982921, =0.0.0-nightly-20215272227, =0.0.0-nightly-2021533445, =0.0.0-nightly-2021242250, =0.0.0-nightly-20214822614, =0.0.0-nightly-2020972106, =0.0.0-nightly-20213723126, =0.0.0-nightly-20214822614, =0.0.0-nightly-2020972106,...