semver-regex is vulnerable to regular expression denial of service. The vulnerability exists in semverRegex
function in index.js
due to improper use of regular expressions which allows an attacker to cause a ReDos.
CPE | Name | Operator | Version |
---|---|---|---|
semver-regex | le | 3.1.3 | |
semver-regex | le | 4.0.2 | |
semver-regex | le | 4.0.2 | |
semver-regex | le | 3.1.2 | |
semver-regex | le | 3.1.3 | |
semver-regex | le | 4.0.2 | |
semver-regex | le | 4.0.2 | |
semver-regex | le | 3.1.2 |