Количество 10
Количество 10
CVE-2024-21538
Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string.
CVE-2024-21538
Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string.
CVE-2024-21538
SUSE-SU-2024:4301-1
Security update for nodejs18
SUSE-SU-2024:4300-1
Security update for nodejs20
SUSE-SU-2024:4286-1
Security update for nodejs20
SUSE-SU-2024:4272-1
Security update for nodejs18
GHSA-3xgq-45jj-v275
Regular Expression Denial of Service (ReDoS) in cross-spawn
BDU:2024-11495
Уязвимость пакета cross-spawn программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:3744-1
Security update for aws-cli, local-npm-registry, python-boto3, python-botocore, python-coverage, python-flaky, python-pluggy, python-pytest, python-pytest-cov, python-pytest-html, python-pytest-metadata, python-pytest-mock
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-21538 Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string. | CVSS3: 4.4 | 0% Низкий | больше 1 года назад |
 | CVE-2024-21538 Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string. | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
 | CVSS3: 7.5 | 0% Низкий | около 1 года назад | |
 | SUSE-SU-2024:4301-1 Security update for nodejs18 | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:4300-1 Security update for nodejs20 | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:4286-1 Security update for nodejs20 | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:4272-1 Security update for nodejs18 | 0% Низкий | около 1 года назад | |
| GHSA-3xgq-45jj-v275 Regular Expression Denial of Service (ReDoS) in cross-spawn | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
 | BDU:2024-11495 Уязвимость пакета cross-spawn программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | около 2 лет назад |
| SUSE-SU-2025:3744-1 Security update for aws-cli, local-npm-registry, python-boto3, python-botocore, python-coverage, python-flaky, python-pluggy, python-pytest, python-pytest-cov, python-pytest-html, python-pytest-metadata, python-pytest-mock | 4 месяца назад |
Уязвимостей на страницу