High severity7.5NVD Advisory· Published Oct 27, 2020· Updated Jun 17, 2026
CVE-2020-7755
CVE-2020-7755
Description
All versions of package dat.gui are vulnerable to Regular Expression Denial of Service (ReDoS) via specifically crafted rgb and rgba values.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
dat.guinpm | <= 0.7.7 | — |
Affected products
2- dat.gui/dat.guidescription
Patches
Vulnerability mechanics
References
6- github.com/dataarts/dat.gui/issues/278nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-chwr-hf3w-c984ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-7755ghsaADVISORY
- snyk.io/vuln/SNYK-JS-DATGUI-1016275nvdThird Party AdvisoryWEB
- github.com/dataarts/dat.gui/pull/279ghsaWEB
- www.npmjs.com/package/dat.guighsaWEB
News mentions
0No linked articles in our index yet.