Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:18 p.m.11 views

CVE-2026-9496

Versions of the package pacote from 11.2.7 are vulnerable to Denial of Service DoS via the addGitSha function. An attacker can exploit this vulnerability by supplying a specially crafted spec.rawSpec value that triggers the function’s regex replacement and string-manipulation logic, causing...

8.7CVSS5.5AI score0.00346EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/26 5:0 a.m.17 views

CVE-2026-9496

Versions of the package pacote from 11.2.7 and before 21.5.1 are vulnerable to Denial of Service DoS via the addGitSha function. An attacker can exploit this vulnerability by supplying a specially crafted spec.rawSpec value that triggers the function’s regex replacement and string-manipulation...

8.7CVSS7.1AI score0.00346EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/26 5:0 a.m.13 views

CVE-2026-9496

Versions of the package pacote from 11.2.7 and before 21.5.1 are vulnerable to Denial of Service DoS via the addGitSha function. An attacker can exploit this vulnerability by supplying a specially crafted spec.rawSpec value that triggers the function’s regex replacement and string-manipulation...

8.7CVSS7.1AI score0.00346EPSS
Exploits0
CVE
CVE
added 2026/05/26 5:0 a.m.94 views

CVE-2026-9496

CVE-2026-9496 affects the npm package pacote

8.7CVSS7.1AI score0.00346EPSS
Exploits0References4
OSV
OSV
added 2026/05/26 5:0 a.m.2 views

CVE-2026-9496

Versions of the package pacote from 11.2.7 and before 21.5.1 are vulnerable to Denial of Service DoS via the addGitSha function. An attacker can exploit this vulnerability by supplying a specially crafted spec.rawSpec value that triggers the function’s regex replacement and string-manipulation...

8.7CVSS7.1AI score0.00346EPSS
Exploits0References6
Rows per page
Query Builder