CVE-2018-1109

Опубликовано: 30 мар. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 5.3

Описание

A vulnerability was found in Braces versions 2.2.0 and above, prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	code not present
cosmic	ignored	end of life
devel	not-affected	3.0.2-2
disco	ignored	end of life
eoan	not-affected	3.0.2-2
esm-apps/bionic	not-affected	code not present
esm-apps/focal	not-affected	3.0.2-2
esm-infra-legacy/trusty	DNE
focal	not-affected	3.0.2-2

Показывать по

Ссылки на источники

EPSS

Процентиль: 57%

0.00357

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2018-1109

CVSS3: 4

redhat

почти 8 лет назад

A vulnerability was found in Braces versions prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.

CVE-2018-1109

CVSS3: 5.3

nvd

почти 5 лет назад

A vulnerability was found in Braces versions 2.2.0 and above, prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.

CVE-2018-1109

CVSS3: 5.3

debian

почти 5 лет назад

A vulnerability was found in Braces versions 2.2.0 and above, prior to ...

GHSA-cwfw-4gq5-mrqx

github

около 4 лет назад

Regular Expression Denial of Service (ReDoS) in braces

BDU:2021-02845

CVSS3: 5.3

fstec

почти 8 лет назад

Уязвимость пакета Braces пакетного менеджера NPM, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 57%

0.00357

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

CVE-2018-1109

Описание

Пакет node-braces

Ссылки на источники

Связанные уязвимости