Security Advisory

CVE-2022-25758

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-01 20:01:14

Last updated 2024-09-17 01:06:29

Assigner snyk

State PUBLISHED

Description

All versions of package scss-tokenizer are vulnerable to Regular Expression Denial of Service (ReDoS) via the loadAnnotation() function, due to the usage of insecure regex.

← Browse all CVEs View on cve.org ↗