EPSS
Percentile
57.5%
browserslist is vulnerable to regular expression denial of service. Usage of an insecure regex allows an attacker to cause a denial of service condition via a malicious string.
github.com/browserslist/browserslist/blob/e82f32d1d4100d6bc79ea0b6b6a2d281a561e33c/index.js%23L472-L474
github.com/browserslist/browserslist/commit/c091916910dfe0b5fd61caad96083c6709b02d98
github.com/browserslist/browserslist/pull/593