Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-X5PG-88WF-QQ4P
HistoryJul 24, 2018 - 8:10 p.m.

Regular Expression Denial of Service in marked

2018-07-2420:10:52
Google
osv.dev
10

EPSS

0.001

Percentile

45.6%

JSON

Affected versions of marked are vulnerable to a regular expression denial of service.

The amplification in this vulnerability is significant, with 1,000 characters resulting in the event loop being blocked for around 6 seconds.

Recommendation

Update to version 0.3.9 or later.

Related

cve 1
cvelist 1
redhatcve 1
github 1
nvd 1
osv 1
ubuntucve 1
nodejs 1
prion 1
veracode 1
debiancve 1
ibm 1
cve
cve
CVE-2017-16114
2018-06-07 02:29:02
cvelist
cvelist
CVE-2017-16114
2018-06-07 02:00:00
redhatcve
redhatcve
CVE-2017-16114
2022-05-20 22:45:20
github
github
Regular Expression Denial of Service in marked
2018-07-24 20:10:52
nvd
nvd
CVE-2017-16114
2018-06-07 02:29:02
osv
osv
CVE-2017-16114
2018-06-07 02:29:02
ubuntucve
ubuntucve
CVE-2017-16114
2018-06-07 00:00:00
nodejs
nodejs
Regular Expression Denial of Service
2017-09-21 04:12:52
prion
prion
Denial of service
2018-06-07 02:29:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2017-09-22 16:21:03
debiancve
debiancve
CVE-2017-16114
2018-06-07 02:29:02
ibm
ibm
Security Bulletin: IBM API Connect is impacted by multiple vulnerabilities in Drupal dated modernizr library
2021-08-25 14:41:22

EPSS

0.001

Percentile

45.6%

JSON
Related for OSV:GHSA-X5PG-88WF-QQ4P
cve1cvelist1redhatcve1github1nvd1osv1ubuntucve1nodejs1prion1veracode1debiancve1ibm1