Regular Expression Denial of Service (ReDoS) Vulnerability in Terser Package

CVE-2022-25858 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.

Learn more about our Web Application Penetration Testing UK.