Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2020-7754

Published: 27/10/2020 Updated: 27/10/2020
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 446
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Npm-user-validate

Vulnerability Summary

This affects the package npm-user-validate prior to 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

npmjs npm-user-validate

Vendor Advisories

Red Hat: Moderate: rh-nodejs10-nodejs security update
Synopsis Moderate: rh-nodejs10-nodejs security update Type/Severity Security Advisory: Moderate Topic An update for rh-nodejs10-nodejs is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...
Red Hat: Moderate: nodejs:10 security update
Synopsis Moderate: nodejs:10 security update Type/Severity Security Advisory: Moderate Topic An update for the nodejs:10 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ...
Red Hat: Moderate: nodejs:12 security update
Synopsis Moderate: nodejs:12 security update Type/Severity Security Advisory: Moderate Topic An update for the nodejs:12 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ...
Red Hat: Moderate: rh-nodejs12-nodejs security update
Synopsis Moderate: rh-nodejs12-nodejs security update Type/Severity Security Advisory: Moderate Topic An update for rh-nodejs12-nodejs is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...
Red Hat: Moderate: nodejs:14 security and bug fix update
Synopsis Moderate: nodejs:14 security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring S ...
Red Hat: Moderate: rh-nodejs14-nodejs security update
Synopsis Moderate: rh-nodejs14-nodejs security update Type/Severity Security Advisory: Moderate Topic An update for rh-nodejs14-nodejs is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...

References

NVD-CWE-noinfohttps://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1019353https://github.com/npm/npm-user-validate/commit/c8a87dac1a4cc6988b5418f30411a8669bef204ehttps://github.com/npm/npm-user-validate/security/advisories/GHSA-xgh6-85xh-479phttps://snyk.io/vuln/SNYK-JS-NPMUSERVALIDATE-1019352https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2021:0521
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook