The package postcss from 7.0.0 and before 8.2.10 are vulnerable to Regular Expression Denial of Service (ReDoS) during source map parsing.
References
Configurations
Configuration 1 (hide)
|
History
11 Jun 2021, 14:08
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://snyk.io/vuln/SNYK-JS-POSTCSS-1090595 - Exploit, Patch, Third Party Advisory | |
References | (MISC) https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1244795 - Exploit, Patch, Third Party Advisory |
Information
Published : 2021-04-12 14:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-23368
Mitre link : CVE-2021-23368
CVE.ORG link : CVE-2021-23368
JSON object : View
Products Affected
postcss
- postcss
CWE