Security Advisory

CVE-2015-8854

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-01-23 21:00:00

Last updated 2024-08-06 08:29:22

Assigner mitre

State PUBLISHED

Description

The marked package before 0.3.4 for Node.js allows attackers to cause a denial of service (CPU consumption) via unspecified vectors that trigger a "catastrophic backtracking issue for the em inline rule," aka a "regular expression denial of service (ReDoS)."

← Browse all CVEs View on cve.org ↗