Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2022-25858

Published: 15/07/2022 Updated: 08/08/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Terser

Vulnerability Summary

The package terser prior to 4.8.1, from 5.0.0 and prior to 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

terser terser

Vendor Advisories

Red Hat: Moderate: Red Hat OpenShift Service Mesh 2.2.7 security update
Synopsis Moderate: Red Hat OpenShift Service Mesh 227 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Service Mesh 227Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates
Synopsis Moderate: Red Hat Advanced Cluster Management 248 security fixes and container updates Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 248 GeneralAvailability release images, which fix security issuesRed Hat Product Security has rated this update as having a security impactof Mo ...
Red Hat: Important: Service Registry (container images) release and security update [2.3.0.GA]
Synopsis Important: Service Registry (container images) release and security update [230GA] Type/Severity Security Advisory: Important Topic An update to the images for Red Hat Integration Service Registry is now available from the Red Hat Container Catalog The purpose of this text-only errata is to inform you about the security issues fi ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.6.2 security update and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 262 security update and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 262 GeneralAvailability release images, which fix bugs and update container imagesRed Hat Product Security has rated this update as having a security i ...

Github Repositories

https://github.com/Naruse-developer/Warframe_theme

The frontend of ServerStatus-Hotaru based on Vue 3.0 (Miku Theme)

Miku_theme The frontend of ServerStatus-Hotaru based on Vue 30 基于Vue 30和Semantic UI打造的”船新“ServerStatus主题,基於原模板进行修改。 本仓库存放了ServerStatus-Hotaru默认主题的源码。 关于本仓库默认使用的图片素材的说明请见下方项目仓库。 关于自定义主题: 如果仅修改标题、副标题、页脚

https://github.com/Naruse-developer/Miku_Theme

The frontend of ServerStatus-Hotaru based on Vue 3.0 (Miku Theme)

Miku_theme The frontend of ServerStatus-Hotaru based on Vue 30 基于Vue 30和Semantic UI打造的”船新“ServerStatus主题,基於原模板进行修改。 本仓库存放了ServerStatus-Hotaru默认主题的源码。 关于本仓库默认使用的图片素材的说明请见下方项目仓库。 关于自定义主题: 如果仅修改标题、副标题、页脚

References

CWE-1333https://github.com/terser/terser/commit/a4da7349fdc92c05094f41d33d06d8cd4e90e76bhttps://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-2949722https://github.com/terser/terser/commit/d8cc5691be980d663c29cc4d5ce67e852d597012https://snyk.io/vuln/SNYK-JS-TERSER-2806366https://github.com/terser/terser/blob/master/lib/compress/evaluate.js%23L135https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2023:3645https://github.com/Naruse-developer/Warframe_theme
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute forceCVE-2024-24908open redirectCVE-2024-31497CVE-2023-45866CVE-2024-4135CVE-2024-25523cache poisoningCVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook