CVE-2022-25858

Summary

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.

Affected Software

VendorProductVersion RangeStatus
n/aterserunspecified < 4.8.1affected
n/aterser5.0.0 < unspecifiedaffected
n/aterserunspecified < 5.14.2affected

Weaknesses

  • Regular Expression Denial of Service (ReDoS)

ADP Enrichment

CVE Program Container

Additional References

References