2 matches found
node-js-1408 (=1.0.0), node-js-1409 (=1.0.0) potentially affected by CVE-2023-39619 via node-email-check (=1.0.4)
node-email-check NPM version =1.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on node-email-check and may be impacted: - node-js-1408 =1.0.0 - node-js-1409 =1.0.0 Source cves: CVE-2023-39619 Source advisory: OSV:GHSA-9242-6P36-6256...
CVE-2023-39619
Summary: CVE-2023-39619 affects the Node Email Check package on NPM. The issue is a ReDoS vulnerability in the scpSyntax component of node-email-check version 1.0.4, allowing an attacker to cause denial of service through a crafted string. The available connected sources corroborate this descript...