7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.9%
Affected versions of mime are vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.
mime
Update to version 2.0.3 or later.
github.com/broofa/mime
github.com/broofa/mime/commit/1df903fdeb9ae7eaa048795b8d580ce2c98f40b0
github.com/broofa/mime/commit/855d0c4b8b22e4a80b9401a81f2872058eae274d
github.com/broofa/node-mime/issues/167
nvd.nist.gov/vuln/detail/CVE-2017-16138