Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-1540

Malicious code in bioql PyPI...

5.3CVSS7AI score0.01429EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2024/05/15 12:25 p.m.55 views

CVE-2024-4067

A flaw was found in the NPM package micromatch where it is vulnerable to a regular expression denial of service ReDoS. The issue occurs in micromatch.braces in index.js because the pattern . will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking t...

7.5CVSS5.1AI score0.01429EPSS
Exploits1References7
OSV
OSV
added 2024/05/14 3:42 p.m.41 views

CVE-2024-4067

The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in micromatch.braces in index.js because the pattern . will greedily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the...

5.3CVSS6AI score0.01429EPSS
Exploits1References8
NVD
NVD
added 2024/05/14 3:42 p.m.34 views

CVE-2024-4067

The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in micromatch.braces in index.js because the pattern . will greedily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the...

5.3CVSS5.6AI score0.01429EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2024/05/13 10:4 a.m.48 views

CVE-2024-4067

The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in micromatch.braces in index.js because the pattern . will greedily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the...

5.3CVSS6.9AI score0.01429EPSS
Exploits1
CVE
CVE
added 2024/05/13 10:4 a.m.378 views

CVE-2024-4067

CVE-2024-4067 affects the NPM package micromatch prior to 4.0.8. The vulnerability is in micromatch.braces() in index.js, where the pattern .* can cause extreme backtracking (ReDoS) as input grows, leading to hangs or slowdowns. A fix was merged and the issue is noted as mitigated by upgrading to...

5.3CVSS5.3AI score0.01429EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2024/05/13 10:4 a.m.73 views

CVE-2024-4067 Regular Expression Denial of Service in micromatch

The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in micromatch.braces in index.js because the pattern . will greedily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the...

5.3CVSS5.4AI score0.01429EPSS
Exploits1References5
Rows per page
Query Builder