Package impact
npm / brace-expansion
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45149 | medium | — | 5.5 | 10d ago | brace-expansion: Large numeric range defeats documented `max` DoS protection | |||
| CVE-2025-5889 | low | 3.1 | 3.1 | 1y ago | A vulnerability was found in juliangruber brace-expansion up to 1.1.11/2.0.1/3.0.0/4.0.0. It has been rated as problematic. Affected by this issue is the function expand of the file index.js. The man… |