Security Advisory

CVE-2021-21306

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-08 21:20:18
Last updated 2024-08-03 18:09:15
Assigner GitHub_M
State PUBLISHED

Description

Marked is an open-source markdown parser and compiler (npm package "marked"). In marked from version 1.1.1 and before version 2.0.0, there is a Regular expression Denial of Service vulnerability. This vulnerability can affect anyone who runs user generated code through marked. This vulnerability is fixed in version 2.0.0.