CVE-2021-3795

No Score
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

semver-regex is vulnerable to Inefficient Regular Expression Complexity

References

https://github.com/sindresorhus/semver-regex/commit/11c66245f4e1976dccc52977ed183696a21a3fd7

https://huntr.dev/bounties/006624e3-35ac-448f-aab9-7b5183f30e28

Details

Source: MITRE

Published: 2021-09-15

Updated: 2021-09-15