Medium severity5.9NVD Advisory· Published Mar 4, 2018· Updated Jun 17, 2026
CVE-2018-7651
CVE-2018-7651
Description
index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash string.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ssrinpm | < 5.2.2 | 5.2.2 |
Affected products
1Patches
Vulnerability mechanics
References
6- github.com/zkat/ssri/commit/d0ebcdc22cb5c8f47f89716d08b3518b2485d65dnvdPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-325j-24f4-qv5xghsaADVISORY
- github.com/zkat/ssri/issues/10nvdThird Party AdvisoryWEB
- nodesecurity.io/advisories/565nvdThird Party Advisory
- nvd.nist.gov/vuln/detail/CVE-2018-7651ghsaADVISORY
- www.npmjs.com/advisories/565ghsaWEB
News mentions
0No linked articles in our index yet.