CVE-2015-8855 (node.js)
The semver package before 4.3.2 for Node.js allows attackers to cause a denial of service (CPU consumption) via a long version string, aka a "regular expression denial of service (ReDoS)."
Source: CVE-2015-8855 (node.js)
CVE-2015-8855 (node.js)
The semver package before 4.3.2 for Node.js allows attackers to cause a denial of service (CPU consumption) via a long version string, aka a "regular expression denial of service (ReDoS)."
Source: CVE-2015-8855 (node.js)