npm package
uri-template-lite
pkg:npm/uri-template-lite
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-43309 | — | < 22.9.0 | 22.9.0 | Aug 24, 2022 | An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the uri-template-lite npm package, when an attacker is able to supply arbitrary input to the "URI.expand" method |
- CVE-2021-43309Aug 24, 2022affected < 22.9.0fixed 22.9.0
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the uri-template-lite npm package, when an attacker is able to supply arbitrary input to the "URI.expand" method