Description
The mime module < 1.4.1, 2.0.1, 2.0.2 is vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.
Remediation
References
https://nodesecurity.io/advisories/535
https://github.com/broofa/node-mime/issues/167
Related Vulnerabilities
CVE-2021-46708 Vulnerability in npm package swagger-ui
CVE-2022-36157 Vulnerability in maven package com.xuxueli:xxl-job
CVE-2018-20676 Vulnerability in maven package org.webjars.npm:bootstrap-sass
CVE-2020-2260 Vulnerability in maven package org.jenkins-ci.plugins:perfecto
CVE-2020-15138 Vulnerability in maven package org.webjars:prismjs