Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

AnonymousNODEJS:1693

HistoryMay 10, 2021 - 3:38 p.m.

Regular Expression Denial of Service

Vulners
Nodejs
Regular Expression Denial of Service

2021-05-1015:38:31

Anonymous

www.npmjs.com

0.005 Low

EPSS

Percentile

76.3%

JSON

Overview

postcss from 7.0.0 and before version 7.0.36 and 8.2.10 is vulnerable to Regular Expression Denial of Service (ReDoS) during source map parsing.

Recommendation

Upgrade to version 8.2.10 or later

References

CVE
GitHub Advisory

CPENameOperatorVersion
postcssge7.0.0 <7.0.36 || >=8.0.0 <8.2.10

CPE	Name	Operator	Version
	postcss	ge	7.0.0 <7.0.36 \|\| >=8.0.0 <8.2.10

openvas 2

debiancve 1

redhatcve 1

nessus 2

cvelist 1

ubuntucve 1

veracode 1

prion 1

osv 2

cve 1

nvd 1

github 1

ibm 6

redhat 3

openvas

OTRS ReDoS Vulnerability (OSA-2021-19)

2021-10-18 00:00:00

OTRS Multiple Vulnerabilities (OSA-2022-04)

2022-10-19 00:00:00

debiancve

CVE-2021-23368

2021-04-12 14:15:14

redhatcve

CVE-2021-23368

2021-04-12 21:16:01

nessus

RHEL 8 : nodejs-postcss (Unpatched Vulnerability)

2024-05-11 00:00:00

Splunk Enterprise < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0613)

2024-05-02 00:00:00

cvelist

CVE-2021-23368 Regular Expression Denial of Service (ReDoS)

2021-04-12 00:00:00

ubuntucve

CVE-2021-23368

2021-04-12 00:00:00

veracode

Regular Expression Denial Of Service (ReDoS)

2021-04-13 06:56:17

prion

Code injection

2021-04-12 14:15:00

osv

CVE-2021-23368

2021-04-12 14:15:14

Regular Expression Denial of Service in postcss

2021-05-10 15:29:24

cve

CVE-2021-23368

2021-04-12 14:15:14

nvd

CVE-2021-23368

2021-04-12 14:15:14

github

Regular Expression Denial of Service in postcss

2021-05-10 15:29:24

ibm

Security Bulletin: Vulnerabilities in Node.js, Color-String, and PostgreSQL affect IBM Spectrum Protect Plus

2021-12-10 20:01:04

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js

2021-10-01 06:17:41

Security Bulletin: Multiple Vulnerabilities in Node.js affect IBM Cloud Pak System

2022-08-17 09:46:50

redhat

(RHSA-2021:3917) Important: Red Hat Quay v3.6.0 security, bug fix and enhancement update

2021-10-19 12:05:33

(RHSA-2021:2438) Moderate: OpenShift Container Platform 4.8.2 bug fix and security update

2021-07-27 22:10:52

(RHSA-2021:3016) Important: Red Hat Advanced Cluster Management for Kubernetes version 2.3

2021-08-05 12:52:42

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.005 Low

EPSS

Percentile

76.3%

JSON

Related for NODEJS:1693