Description
The parsejson module is vulnerable to regular expression denial of service when untrusted user input is passed into it to be parsed.
Remediation
References
https://nodesecurity.io/advisories/528
https://github.com/get/parsejson/issues/4
Related Vulnerabilities
CVE-2014-9772 Vulnerability in npm package validator
CVE-2021-29486 Vulnerability in npm package cumulative-distribution-function
CVE-2019-0193 Vulnerability in maven package org.apache.solr:solr-core
CVE-2019-0227 Vulnerability in maven package org.apache.axis:axis-rt-core
CVE-2021-46063 Vulnerability in maven package net.mingsoft:ms-mcms