Description
The parsejson module is vulnerable to regular expression denial of service when untrusted user input is passed into it to be parsed.
Remediation
References
https://github.com/get/parsejson/issues/4
https://nodesecurity.io/advisories/528
Related Vulnerabilities
CVE-2021-37137 Vulnerability in maven package io.netty:netty-codec
CVE-2023-26106 Vulnerability in npm package dot-lens
CVE-2020-7630 Vulnerability in npm package git-add-remote
CVE-2022-29257 Vulnerability in maven package org.webjars.npm:electron
CVE-2021-23353 Vulnerability in maven package org.webjars:jspdf