Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: uglify-js (CVE-2022-25858)

The version of uglify-js installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-25858 advisory. - The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial...

7.5CVSS5.6AI score0.0232EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.12 views

CVE-2022-25858 affecting package uglify-js for versions less than 3.19.3-11

CVE-2022-25858 affecting package uglify-js for versions less than 3.19.3-11. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.0232EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-25858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service ReDoS due to insecure usage of regular...

7.5CVSS7.1AI score0.0232EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/01 12:54 p.m.33 views

Security Bulletin: Vulnerability in Node.js terser affect Cloud Pak System[CVE-2022-25858]

Summary Vulnerability found in Node.js terser module affect Cloud Pak System. IBM Cloud Pak System has addressed this vulnerability. Vulnerability Details CVEID:CVE-2022-25858 DESCRIPTION: Node.js terser module is vulnerable to a denial of service, caused by a regular expression denial of service...

7.5CVSS6.6AI score0.0232EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/01 2:54 p.m.59 views

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Summary IBM Cloud Pak for Security includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version of Cloud Pak for Security...

9.8CVSS9.6AI score0.06031EPSS
Exploits5Affected Software1
RedHat Linux
RedHat Linux
added 2023/06/15 8:55 p.m.37 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.2.7 security update

Red Hat OpenShift Service Mesh 2.2.7 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

7.8CVSS6.6AI score0.14663EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2022/11/02 2:5 p.m.191 views

Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.2 security update and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.6.2 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS6.6AI score0.04923EPSS
Exploits2References9
OSV
OSV
added 2022/07/15 8:15 p.m.1 views

DEBIAN-CVE-2022-25858

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service ReDoS due to insecure usage of regular expressions...

7.5CVSS7.6AI score0.0232EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/07/15 8:0 p.m.41 views

CVE-2022-25858 Regular Expression Denial of Service (ReDoS)

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service ReDoS due to insecure usage of regular expressions...

5.3CVSS7.6AI score0.0232EPSS
Exploits1References5
CVE
CVE
added 2022/07/15 8:0 p.m.502 views

CVE-2022-25858

CVE-2022-25858 affects terser: versions 4.8.1 and later (and 5.x from 5.0.0 up to before 5.14.2) are vulnerable to ReDoS due to insecure regex usage during minification. Impact can be a Denial of Service via crafted inputs. Mitigation: upgrade terser to 4.8.1+ or to 5.14.2+ (i.e., the fixed relea...

7.5CVSS6.2AI score0.0232EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder