VIR Vulnerability Intelligence Relay

Package impact

npm npm / ssri

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2021-27290 medium 5.5 5y ago RHSA-2021:3074: nodejs:14 security, bug fix, and enhancement update (Moderate)
CVE-2018-7651 unknown 8y ago index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash string.