Lucene search
Сковорода Никита АндреевичNODEJS:606HistoryApr 24, 2018 - 10:25 p.m.
Regular Expression Denial of Service
2018-04-2422:25:08
Сковорода Никита Андреевич
www.npmjs.com
487
EPSS
0.002
Percentile
54.1%
Overview
Versions of sshpk before 1.13.2 or 1.14.1 are vulnerable to regular expression denial of service when parsing crafted invalid public keys.
Recommendation
Update to version 1.13.2, 1.14.1 or later.
References
Related
github
github
Regular Expression Denial of Service in sshpk
2018-08-15 13:22:23
osv
osv
CVE-2018-3737
2018-06-07 02:29:08
Regular Expression Denial of Service in sshpk
2018-08-15 13:22:23
ubuntucve
ubuntucve
CVE-2018-3737
2018-06-07 00:00:00
prion
prion
Code injection
2018-06-07 02:29:00
redhatcve
redhatcve
CVE-2018-3737
2020-02-03 02:35:41
debiancve
debiancve
CVE-2018-3737
2018-06-07 02:29:08
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2018-04-05 05:41:24
nvd
nvd
CVE-2018-3737
2018-06-07 02:29:08
cve
cve
CVE-2018-3737
2018-06-07 02:29:08
cvelist
cvelist
CVE-2018-3737
2018-06-07 02:00:00
ibm
ibm
redhat
redhat
(RHSA-2020:2625) Moderate: rh-nodejs8-nodejs security update
2020-06-18 21:46:51
nessus
nessus
RHEL 7 : rh-nodejs8-nodejs (RHSA-2020:2625)
2023-01-23 00:00:00