itsKedar / TodoList_mern

0 stars 0 forks source link

CX: CVE-2021-35065 in Npm-glob-parent and 3.1.0 @ TodoList_mern.main #12

Open itsKedar opened 2 years ago

itsKedar commented 2 years ago

Description

glob-parent before 6.0.1 is vulnerable to Regular Expression Denial of Service (ReDoS).

HIGH Vulnerable Package issue exists @ glob-parent in branch main

Vulnerability ID: CVE-2021-35065

Package Name: glob-parent

Severity: HIGH

CVSS Score: 7.5

Publish Date: 2022-07-18T05:11:00

Current Package Version: 3.1.0

Remediation Upgrade Recommendation: 6.0.1

Link To SCA

Reference – NVD link

itsKedar commented 2 years ago

Issue still exists.

itsKedar commented 2 years ago

Issue still exists.

itsKedar commented 2 years ago

Issue still exists.