Описание
Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10.
A flaw was found in the node-fetch package. Affected 3.x versions of the node-fetch package are vulnerable to denial of service attacks, affecting system availability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Migration Toolkit for Containers | rhmtc/openshift-migration-ui-rhel8 | Not affected | ||
| Migration Toolkit for Virtualization | migration-toolkit-virtualization/mtv-ui-rhel8 | Not affected | ||
| .NET 6.0 on Red Hat Enterprise Linux | rh-dotnet60-dotnet | Not affected | ||
| OpenShift Developer Tools and Services | odo | Not affected | ||
| OpenShift Service Mesh 2 | openshift-service-mesh/kiali-rhel8 | Not affected | ||
| OpenShift Service Mesh 2.0 | servicemesh-grafana | Not affected | ||
| OpenShift Service Mesh 2.0 | servicemesh-prometheus | Not affected | ||
| OpenShift Service Mesh 2.1 | openshift-service-mesh/kiali-rhel8 | Not affected | ||
| OpenShift Service Mesh 2.1 | servicemesh-grafana | Not affected | ||
| OpenShift Service Mesh 2.1 | servicemesh-prometheus | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=2113943node-fetch: Denial of Service in GitHub repository node-fetch
EPSS
Процентиль: 45%
0.00225
Низкий
5.9 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.9
ubuntu
больше 3 лет назад
Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10.
CVSS3: 5.9
nvd
больше 3 лет назад
Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10.
CVSS3: 5.9
debian
больше 3 лет назад
Inefficient Regular Expression Complexity in GitHub repository node-fe ...
CVSS3: 5.9
github
больше 3 лет назад
node-fetch Inefficient Regular Expression Complexity
EPSS
Процентиль: 45%
0.00225
Низкий
5.9 Medium
CVSS3