The mime module < 1.4.1, 2.0.1, 2.0.2 is vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.
[
{
"product": "mime node module",
"vendor": "HackerOne",
"versions": [
{
"status": "affected",
"version": "< 1.4.1 || > 2.0.0 < 2.0.3"
}
]
}
]