0.002 Low
EPSS
Percentile
56.1%
marked is vulnerable to regular expression denial of service. The usage of an insecure regex allows an attacker to crash the application via malicious string.
github.com/markedjs/marked/commit/7293251c438e3ee968970f7609f1a27f9007bccd
github.com/markedjs/marked/issues/1927
github.com/markedjs/marked/pull/1864
github.com/markedjs/marked/security/advisories/GHSA-4r62-v4vq-hr96
www.npmjs.com/package/marked