Description

jshamcrest is vulnerable to regular expression denial of service (ReDoS) when certain types of user input is passed in to the emailAddress validator.

Remediation

References

https://nodesecurity.io/advisories/53

Related Vulnerabilities

CVE-2020-28278 Vulnerability in npm package shvl

CVE-2020-7740 Vulnerability in npm package node-pdf-generator

CVE-2012-0394 Vulnerability in maven package org.apache.struts.xwork:xwork-core

CVE-2021-23509 Vulnerability in npm package json-ptr

CVE-2020-28500 Vulnerability in maven package org.webjars.bower:lodash

Severity

High

Classification

CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Broken Link