Filtered by vendor Npmjs Subscriptions
Filtered by product Hosted-git-info Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-23362 3 Npmjs, Redhat, Siemens 7 Hosted-git-info, Acm, Enterprise Linux and 4 more 2024-11-21 5.3 Medium
The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.