CVE-2021-3795
semver-regex is vulnerable to Inefficient Regular Expression Complexity
7.5CVSS
7.2AI Score
0.001EPSS
CVE-2021-43307
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the semver-regex npm package, when an attacker is able to supply arbitrary input to the test() method
7.3AI Score