CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5606 matches found

Prion•added 2022/10/14 4:15 p.m.•25 views

Denial of service

A Regular expression denial of service ReDoS flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js...

5CVSS8.1AI score0.02029EPSS

Exploits1References6Affected Software1

OSV•added 2022/10/14 4:15 p.m.•0 views

UBUNTU-CVE-2022-37603

A Regular expression denial of service ReDoS flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js...

7.5CVSS6.8AI score0.02029EPSS

Exploits1References2

Vulnrichment•added 2022/10/14 12:0 a.m.•4 views

CVE-2022-37603

A Regular expression denial of service ReDoS flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js...

7.4AI score0.02029EPSS

Exploits1References6

CVE•added 2022/10/14 12:0 a.m.•295 views

CVE-2022-37603

CVE-2022-37603 describes a Regular Expression Denial of Service (ReDoS) in webpack-loader-utils, specifically in Function interpolateName.js (interpolateName.js) via the url variable. The issue affects loader-utils v2.0.0 and can lead to DoS conditions in applications that process input using thi...

7.5CVSS7.2AI score0.02029EPSS

Exploits1References6Affected Software1

CNNVD•added 2022/10/14 12:0 a.m.•2 views

loader-utils 安全漏洞

loader-utils is a webpack open source utility for the webpack loader. A security vulnerability exists in loader-utils version 2.0.0, which stems from a regular expression denial of service ReDoS vulnerability via the inclusion of a url variable in interpolateName.js...

7.5CVSS6.9AI score0.02029EPSS

Exploits1References14

Cvelist•added 2022/10/14 12:0 a.m.•20 views

CVE-2022-37603

A Regular expression denial of service ReDoS flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js...

7.9AI score0.02029EPSS

Exploits1References6

Positive Technologies•added 2022/10/14 12:0 a.m.•5 views

PT-2022-24024

Name of the Vulnerable Software and Affected Versions webpack loader-utils version 2.0.0 webpack loader-utils versions prior to 1.4.2 webpack loader-utils versions prior to 2.0.4 webpack loader-utils versions prior to 3.2.1 Description A Regular expression denial of service ReDoS flaw was found i...

7.5CVSS6.6AI score0.02029EPSS

Exploits1References27

Debian CVE•added 2022/10/14 12:0 a.m.•32 views

CVE-2022-37603

A Regular expression denial of service ReDoS flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js...

7.5CVSS6.8AI score0.02029EPSS

Exploits1

vulnersOsv•added 2022/10/13 12:0 p.m.•5 views

-tompan-reacttemplate (>=1.0.1 <=1.1.0), 06demo-1 (=1.0.0) +34038 more potentially affected by CVE-2022-37601 via loader-utils (>=0.1.2 <=1.4.0)

loader-utils NPM version =0.1.2, =1.0.1, =1.1.0 - 06demo-1 =1.0.0 - 0726react =0.1.1 - 0x0.icu.anima =0.1.0 - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0 - 0xgank-tea-central-compound =1.0.0 -...

9.8CVSS7.4AI score0.02601EPSS

Exploits1

vulnersOsv•added 2022/10/13 12:0 p.m.•5 views

0xgank-tea-advice-pull (=1.0.0), 0xgank-tea-balance-pencil (=1.0.0) +8769 more potentially affected by CVE-2022-37601 via loader-utils (>=2.0.0 <=2.0.2)

loader-utils NPM version =2.0.0, =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on loader-utils and may be impacted: - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0...

9.8CVSS7.4AI score0.02601EPSS

Exploits1

OSV•added 2022/10/13 12:0 p.m.•8 views

GHSA-76P3-8JX3-JPFQ Prototype pollution in webpack loader-utils

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js...

9.8CVSS5.9AI score0.02601EPSS

Exploits1References16

Github Security Blog•added 2022/10/13 12:0 p.m.•78 views

Prototype pollution in webpack loader-utils

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js...

9.8CVSS8.9AI score0.02601EPSS

Exploits1References16Affected Software1

OSV•added 2022/10/12 8:15 p.m.•35 views

CVE-2022-37601

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS9.2AI score

Exploits0References9

OSV•added 2022/10/12 8:15 p.m.•6 views

AZL-26161 CVE-2022-37601 affecting package reaper for versions less than 3.1.1-3

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS6.7AI score0.02601EPSS

Exploits1References1

OSV•added 2022/10/12 8:15 p.m.•3 views

DEBIAN-CVE-2022-37601

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS8.1AI score0.02601EPSS

Exploits1References1

UbuntuCve•added 2022/10/12 8:15 p.m.•40 views

CVE-2022-37601

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS6.8AI score0.02601EPSS

Exploits1References4

Prion•added 2022/10/12 8:15 p.m.•24 views

Code injection

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils 2.0.0 via the name variable in parseQuery.js...

7.5CVSS9.2AI score0.02601EPSS

Exploits1References9Affected Software2

ATTACKERKB•added 2022/10/12 8:15 p.m.•3 views

CVE-2022-37601

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS6.7AI score0.02601EPSS

Exploits1References10

OSV•added 2022/10/12 8:15 p.m.•1 views

UBUNTU-CVE-2022-37601

Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS6.8AI score0.02601EPSS

Exploits1References5

vulnersOsv•added 2022/10/12 12:0 p.m.•3 views

0xgank-tea-advice-pull (=1.0.0), 0xgank-tea-balance-pencil (=1.0.0) +8777 more potentially affected by CVE-2022-37599 via loader-utils (>=2.0.0 <=2.0.3)

loader-utils NPM version =2.0.0, =2.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on loader-utils and may be impacted: - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0...

7.5CVSS7.2AI score0.0204EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by