Количество 11
Количество 11
BDU:2021-04609
Уязвимость библиотек для Node.js Got и Normalize-url, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2021-33502
The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs.
CVE-2021-33502
The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs.
CVE-2021-33502
The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs.
CVE-2021-33502
The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x befo ...
GHSA-px4h-xg32-q955
ReDoS in normalize-url
RLSA-2021:5171
Moderate: nodejs:16 security, bug fix, and enhancement update
ELSA-2021-5171
ELSA-2021-5171: nodejs:16 security, bug fix, and enhancement update (MODERATE)
RLSA-2022:0350
Moderate: nodejs:14 security, bug fix, and enhancement update
ELSA-2022-0350
ELSA-2022-0350: nodejs:14 security, bug fix, and enhancement update (MODERATE)
ELSA-2022-6595
ELSA-2022-6595: nodejs and nodejs-nodemon security and bug fix update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2021-04609 Уязвимость библиотек для Node.js Got и Normalize-url, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
 | CVE-2021-33502 The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
 | CVE-2021-33502 The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
 | CVE-2021-33502 The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
| CVE-2021-33502 The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x befo ... | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
| GHSA-px4h-xg32-q955 ReDoS in normalize-url | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
 | RLSA-2021:5171 Moderate: nodejs:16 security, bug fix, and enhancement update | больше 3 лет назад | ||
| ELSA-2021-5171 ELSA-2021-5171: nodejs:16 security, bug fix, and enhancement update (MODERATE) | больше 3 лет назад | ||
| RLSA-2022:0350 Moderate: nodejs:14 security, bug fix, and enhancement update | больше 3 лет назад | ||
| ELSA-2022-0350 ELSA-2022-0350: nodejs:14 security, bug fix, and enhancement update (MODERATE) | больше 3 лет назад | ||
| ELSA-2022-6595 ELSA-2022-6595: nodejs and nodejs-nodemon security and bug fix update (MODERATE) | больше 2 лет назад |
Уязвимостей на страницу