CVE-2020-7754 in npm-user-validateinformation

Résumé

par MITRE

This affects the package npm-user-validate before 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Snyk

Réserver

21/01/2020

Modérer

accepté

Entrée

VDB-163687

CPE

prêt

CWE

CWE-185 (confirmé)

CVSS

5.0 (NVD)

EPSS

0.01798

KEV

non

Activités

très faible

Secteur

Hostingprovider, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-7754
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-7754
CVE Details	https://www.cvedetails.com/cve/CVE-2020-7754/

◂ Précédent Aperçu Suivant ▸

Do you know our Splunk app?

Download it now for free!