VYPR
High severity7.5NVD Advisory· Published Jun 7, 2018· Updated Jun 17, 2026

CVE-2017-16099

CVE-2017-16099

Description

The no-case module is vulnerable to regular expression denial of service. When malicious untrusted user input is passed into no-case it can block the event loop causing a denial of service condition.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
no-casenpm
< 2.3.22.3.2

Affected products

2
  • ghsa-coords
    Range: < 2.3.2
  • HackerOne/no-case node modulev5
    Range: <2.3.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.