0.005 Low
EPSS
Percentile
76.5%
jspdf is vulnerable to regular expression denial of service. The vulnerability exists because it does not properly handle the regular expression for input image info extractedInfo in the function addImage , causing an application crash.
extractedInfo
addImage
github.com/MrRio/jsPDF/blob/master/src/modules/addimage.js#L633
github.com/MrRio/jsPDF/commit/d8bb3b39efcd129994f7a3b01b632164144ec43e
github.com/MrRio/jsPDF/issues/3090
github.com/MrRio/jsPDF/pull/3091
www.npmjs.com/advisories/1709