Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0627

Malware in sbrugna...

7.5CVSS7.6AI score0.02168EPSS
Exploits0References13
Github Security Blog
Github Security Blog
added 2021/03/19 9:25 p.m.81 views

Regular Expression Denial of Service (ReDoS)

The is-svg package 2.1.0 through 4.2.1 for Node.js uses a regular expression that is vulnerable to Regular Expression Denial of Service ReDoS. If an attacker provides a malicious string, is-svg will get stuck processing the input...

7.5CVSS7.9AI score0.02168EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2021/03/12 10:15 p.m.27 views

CVE-2021-28092

The is-svg package 2.1.0 through 4.2.1 for Node.js uses a regular expression that is vulnerable to Regular Expression Denial of Service ReDoS. If an attacker provides a malicious string, is-svg will get stuck processing the input for a very long time...

7.5CVSS0.02168EPSS
Exploits0References4
Prion
Prion
added 2021/03/12 10:15 p.m.18 views

Design/Logic Flaw

The is-svg package 2.1.0 through 4.2.1 for Node.js uses a regular expression that is vulnerable to Regular Expression Denial of Service ReDoS. If an attacker provides a malicious string, is-svg will get stuck processing the input for a very long time...

5CVSS7.8AI score0.02168EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2021/03/12 12:0 a.m.6 views

PT-2021-17738 · Npm · Is-Svg

Name of the Vulnerable Software and Affected Versions: is-svg package versions 2.1.0 through 4.2.1 Description: The issue concerns a Regular Expression Denial of Service ReDoS vulnerability in the is-svg package for Node.js. If an attacker provides a malicious string, the package will get stuck...

7.5CVSS7.4AI score0.02168EPSS
Exploits0References9
Rows per page
Query Builder