CVE-2018-1109

Summary

A vulnerability was found in Braces versions 2.2.0 and above, prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.

Affected Software

VendorProductVersion RangeStatus
n/anodejs-braces2.2.0 < 2.3.1affected

Weaknesses

  • CWE-185: CWE-185->CWE-400

ADP Enrichment

CVE Program Container

Additional References

References