pkg:npm/semver
Type
npm
Name
semver
Known advisories, vulnerabilities and fixes for semver package.
- Repository
- https://www.npmjs.com/package/semver
High
1
Moderate
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 5.7.2 >= 6.0.0, < 6.3.1 >= 7.0.0, < 7.5.2 |
CVE-2022-25883
|
NPM:GHSA-C2QF-RXJJ-QQGW | semver vulnerable to Regular Expression Denial of Service | moderate |
2023-06-21T06:30:28
(15 months ago) |
|
Fixed | = 5.7.2 = 6.3.1 = 7.5.2 |
CVE-2022-25883
|
NPM:GHSA-C2QF-RXJJ-QQGW | semver vulnerable to Regular Expression Denial of Service | moderate |
2023-06-21T06:30:28
(15 months ago) |
|
Affected | < 4.3.2 |
CVE-2015-8855
|
NPM:GHSA-X6FG-F45M-JF5Q | Regular Expression Denial of Service in semver | high |
2017-10-24T18:33:36
(7 years ago) |
|
Fixed | = 4.3.2 |
CVE-2015-8855
|
NPM:GHSA-X6FG-F45M-JF5Q | Regular Expression Denial of Service in semver | high |
2017-10-24T18:33:36
(7 years ago) |