VYPR
High severityNVD Advisory· Published Aug 29, 2022· Updated Apr 23, 2025

Possible Regular Expression Denial of Service (ReDoS) used on uncontrolled data in nitrado.js

CVE-2022-36034

Description

nitrado.js is a type safe wrapper for the Nitrado API. Possible ReDoS with lib input of {{ and with many repetitions of {{|. This issue has been patched in all versions above 0.2.5. There are currently no known workarounds.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
nitrado.jsnpm
< 0.2.50.2.5

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.