pkg:npm/semver
Type
npm
Name
semver
Known advisories, vulnerabilities and fixes for semver package.
- Repository
- https://www.npmjs.com/package/semver
High
1
Moderate
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 5.7.2 >= 6.0.0, < 6.3.1 >= 7.0.0, < 7.5.2 |
CVE-2022-25883
|
 NPM:GHSA-C2QF-RXJJ-QQGW
|
semver vulnerable to Regular Expression Denial of Service | moderate |
2023-06-21T06:30:28
(15 months ago) |
|
| Fixed | = 5.7.2 = 6.3.1 = 7.5.2 |
CVE-2022-25883
|
NPM:GHSA-C2QF-RXJJ-QQGW
|
semver vulnerable to Regular Expression Denial of Service | moderate |
2023-06-21T06:30:28
(15 months ago) |
|
| Affected | < 4.3.2 |
CVE-2015-8855
|
NPM:GHSA-X6FG-F45M-JF5Q
|
Regular Expression Denial of Service in semver | high |
2017-10-24T18:33:36
(7 years ago) |
|
| Fixed | = 4.3.2 |
CVE-2015-8855
|
NPM:GHSA-X6FG-F45M-JF5Q
|
Regular Expression Denial of Service in semver | high |
2017-10-24T18:33:36
(7 years ago) |