A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. The identifier of the patch is c38a0166c266a679c8de012d4eaccec3f944e685. It is recommended to upgrade the affected component. The identifier VDB-217665 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/debug-js/debug/commit/c38a0166c266a679c8de012d4eaccec3f944e685 | Patch |
https://github.com/debug-js/debug/pull/504 | Patch |
https://github.com/debug-js/debug/releases/tag/3.1.0 | Release Notes |
https://vuldb.com/?ctiid.217665 | Third Party Advisory VDB Entry |
https://vuldb.com/?id.217665 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
11 Apr 2024, 00:58
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
24 Oct 2023, 19:24
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1333 |
20 Oct 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. The identifier of the patch is c38a0166c266a679c8de012d4eaccec3f944e685. It is recommended to upgrade the affected component. The identifier VDB-217665 was assigned to this vulnerability. | |
CWE |
17 Jan 2023, 17:16
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://vuldb.com/?id.217665 - Third Party Advisory, VDB Entry | |
References | (MISC) https://vuldb.com/?ctiid.217665 - Third Party Advisory, VDB Entry |
13 Jan 2023, 13:49
Type | Values Removed | Values Added |
---|---|---|
First Time |
Debug Project
Debug Project debug |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CPE | cpe:2.3:a:debug_project:debug:*:*:*:*:*:node.js:*:* | |
References | (MISC) https://vuldb.com/?id.217665 - Permissions Required, Third Party Advisory | |
References | (MISC) https://vuldb.com/?ctiid.217665 - Permissions Required, Third Party Advisory | |
References | (MISC) https://github.com/debug-js/debug/releases/tag/3.1.0 - Release Notes, Third Party Advisory | |
References | (MISC) https://github.com/debug-js/debug/pull/504 - Patch, Third Party Advisory | |
References | (MISC) https://github.com/debug-js/debug/commit/c38a0166c266a679c8de012d4eaccec3f944e685 - Patch, Third Party Advisory |
09 Jan 2023, 12:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-09 10:15
Updated : 2024-05-14 04:35
NVD link : CVE-2017-20165
Mitre link : CVE-2017-20165
CVE.ORG link : CVE-2017-20165
JSON object : View
Products Affected
debug_project
- debug
CWE