CVE-2018-25049

Опубликовано: 27 дек. 2022

Источник: nvd

CVSS3: 3

CVSS3: 7.5

EPSS Низкий

Описание

A vulnerability was found in email-existence. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The name of the patch is 0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56. It is recommended to apply a patch to fix this issue. VDB-216854 is the identifier assigned to this vulnerability.

Ссылки

https://github.com/nmanousos/email-existence/commit/0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56
Patch
Third Party Advisory
https://github.com/nmanousos/email-existence/pull/37
Patch
Third Party Advisory
https://vuldb.com/?ctiid.216854
Third Party Advisory
https://vuldb.com/?id.216854
Permissions Required
Third Party Advisory
https://github.com/nmanousos/email-existence/commit/0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56
Patch
Third Party Advisory
https://github.com/nmanousos/email-existence/pull/37
Patch
Third Party Advisory
https://vuldb.com/?ctiid.216854
Third Party Advisory
https://vuldb.com/?id.216854
Permissions Required
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:email-existence_project:email-existence:-:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00442

Низкий

3 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-1333

Связанные уязвимости

GHSA-p27h-4cpf-fw48

CVSS3: 7.5

github

около 3 лет назад

email-existence Inefficient Regular Expression Complexity vulnerability

EPSS

Процентиль: 63%

0.00442

Низкий

3 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-1333