CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 2CVE-2021-23425 – Regular Expression Denial of Service (ReDoS)
https://notcve.org/view.php?id=CVE-2021-23425
All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing. Todas las versiones del paquete trim-off-newlines son vulnerables a una Denegación de Servicio por Expresión Regular (ReDoS) por medio de procesamiento de cadenas. A flaw was found in nodejs-trim-off-newlines. All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing. The highest threat from this vulnerability is to system availability. • https://github.com/stevemao/trim-off-newlines/blob/master/index.js%23L6 https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1567197 https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850 https://access.redhat.com/security/cve/CVE-2021-23425 https://bugzilla.redhat.com/show_bug.cgi?id=1995793 • CWE-400: Uncontrolled Resource Consumption •