Security Advisory
CVE-2021-43309
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the uri-template-lite npm package, when an attacker is able to supply arbitrary input to the "URI.expand" method