Количество 3
Количество 3
CVE-2023-25166
formula is a math and string formula parser. In versions prior to 3.0.1 crafted user-provided strings to formula's parser might lead to polynomial execution time and a denial of service. Users should upgrade to 3.0.1+. There are no known workarounds for this vulnerability.
CVE-2023-25166
formula is a math and string formula parser. In versions prior to 3.0.1 crafted user-provided strings to formula's parser might lead to polynomial execution time and a denial of service. Users should upgrade to 3.0.1+. There are no known workarounds for this vulnerability.
GHSA-c2jc-4fpr-4vhg
@sideway/formula contains Regular Expression Denial of Service (ReDoS) Vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-25166 formula is a math and string formula parser. In versions prior to 3.0.1 crafted user-provided strings to formula's parser might lead to polynomial execution time and a denial of service. Users should upgrade to 3.0.1+. There are no known workarounds for this vulnerability. | CVSS3: 6.5 | 1% Низкий | около 3 лет назад |
 | CVE-2023-25166 formula is a math and string formula parser. In versions prior to 3.0.1 crafted user-provided strings to formula's parser might lead to polynomial execution time and a denial of service. Users should upgrade to 3.0.1+. There are no known workarounds for this vulnerability. | CVSS3: 5.5 | 1% Низкий | около 3 лет назад |
| GHSA-c2jc-4fpr-4vhg @sideway/formula contains Regular Expression Denial of Service (ReDoS) Vulnerability | CVSS3: 5.5 | 1% Низкий | около 3 лет назад |
Уязвимостей на страницу