3 matches found
CVE-2021-3820
inflect is vulnerable to Inefficient Regular Expression Complexity...
@deansel/latte (>=0.1.2-beta.1 <=0.1.2-beta.7), @ibuk/epubjs-rn (>=0.2.40 <=0.2.43) +49 more potentially affected by CVE-2021-3820 via i (>=0.2.0 <=0.3.6)
i NPM version =0.2.0, =0.1.2-beta.1, =0.2.40, =0.2.38, =0.3.25, =0.2.33, =4.0.0-beta.6, =0.2.5, =0.6.0, =0.1.5, =0.0.2, =0.2.37, =0.0.1, =0.0.3 and more Source cves: CVE-2021-3820 Source advisory: OSV:GHSA-X55W-VJJP-222R...
CVE-2021-3820
CVE-2021-3820 affects the npm package inflect. The vulnerability is a result of inefficient regular expressions (ReDoS) in the table_name input to the classify function, enabling an attacker to cause excessive CPU usage and potential denial of service. A PoC snippet demonstrates escalating CPU co...