Опубликовано: 28 апр. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 5.3
Описание
The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 4.21.3+~cs6.1.12-1 |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | not-affected | 4.21.3+~cs6.1.12-1 |
| esm-infra-legacy/trusty | DNE | |
| focal | ignored | end of standard support, was needs-triage |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 59%
0.00385
Низкий
5 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
redhat
почти 5 лет назад
The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.
CVSS3: 5.3
nvd
почти 5 лет назад
The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.
CVSS3: 5.3
debian
почти 5 лет назад
The package browserslist from 4.0.0 and before 4.16.5 are vulnerable t ...
CVSS3: 5.3
github
больше 4 лет назад
Regular Expression Denial of Service in browserslist
EPSS
Процентиль: 59%
0.00385
Низкий
5 Medium
CVSS2
5.3 Medium
CVSS3