npm package
sshpk
pkg:npm/sshpk
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-3737 | Hig | 7.5 | < 1.13.2 | 1.13.2 | Jun 7, 2018 | sshpk is vulnerable to ReDoS when parsing crafted invalid public keys. |
- affected < 1.13.2fixed 1.13.2
sshpk is vulnerable to ReDoS when parsing crafted invalid public keys.