All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing.
References
Link | Resource |
---|---|
https://github.com/stevemao/trim-off-newlines/blob/master/index.js%23L6 | Broken Link Third Party Advisory |
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1567197 | Exploit Third Party Advisory |
https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: snyk
Published: 2021-08-18T00:00:00
Updated: 2021-08-18T16:15:11
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23425
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-18T17:15:08.067
Modified: 2022-01-18T17:33:10.930
Link: CVE-2021-23425
JSON object: View
Redhat Information
No data.
CWE