Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:37522
HistoryOct 12, 2022 - 2:12 a.m.

Regular Expression Denial Of Service (ReDoS)

2022-10-1202:12:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
69
loader-utils
redos
regex pattern
resourcepath
interpolation
vulnerability
software

0.003 Low

EPSS

Percentile

69.9%

JSON

loader-utils is vulnerable to regular expression denial of service. The vulnerability exists due to the insecure regex pattern used for the resourcePath variable in interpolateName.js, allowing an attacker to crash the application by providing a malicious input

Related

nvd 1
osv 2
prion 1
ibm 10
ubuntucve 1
redhatcve 1
debiancve 1
cve 1
github 1
cvelist 1
nessus 6
openvas 2
fedora 2
redos 1
redhat 1
nvd
nvd
CVE-2022-37599
2022-10-11 19:15:11
osv
osv
loader-utils is vulnerable to Regular Expression Denial of Service (ReDoS)
2022-10-12 12:00:27
CVE-2022-37599
2022-10-11 19:15:11
prion
prion
Denial of service
2022-10-11 19:15:00
ibm
ibm
Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to loader-utils CVE-2022-37599
2023-01-03 09:16:42
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:46:35
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:31:54
ubuntucve
ubuntucve
CVE-2022-37599
2022-10-11 00:00:00
redhatcve
redhatcve
CVE-2022-37599
2023-05-23 10:40:04
debiancve
debiancve
CVE-2022-37599
2022-10-11 19:15:11
cve
cve
CVE-2022-37599
2022-10-11 19:15:11
github
github
loader-utils is vulnerable to Regular Expression Denial of Service (ReDoS)
2022-10-12 12:00:27
cvelist
cvelist
CVE-2022-37599
2022-10-11 00:00:00
nessus
nessus
Fedora 38 : yarnpkg (2024-5ecc250449)
2024-02-28 00:00:00
RHEL 7 : loader-utils (Unpatched Vulnerability)
2024-05-11 00:00:00
Fedora 39 : yarnpkg (2024-28fc0c2ef4)
2024-02-28 00:00:00
openvas
openvas
Fedora: Security Advisory for yarnpkg (FEDORA-2024-5ecc250449)
2024-02-28 00:00:00
Fedora: Security Advisory for yarnpkg (FEDORA-2024-28fc0c2ef4)
2024-02-28 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: yarnpkg-1.22.21-2.fc39
2024-02-28 01:10:55
[SECURITY] Fedora 38 Update: yarnpkg-1.22.21-2.fc38
2024-02-28 01:41:33
redos
redos
ROS-20240704-07
2024-07-04 00:00:00
redhat
redhat
(RHSA-2023:4983) Important: Red Hat Process Automation Manager 7.13.4 security update
2023-09-05 18:35:52

0.003 Low

EPSS

Percentile

69.9%

JSON
Related for VERACODE:37522
nvd1osv2prion1ibm10ubuntucve1redhatcve1debiancve1cve1github1cvelist1nessus6openvas2fedora2redos1redhat1