CVE-2021-40898

Name of the Vulnerable Software and Affected Versions scaffold-helper version 1.2.0

Description A Regular Expression Denial of Service (ReDOS) issue was found in scaffold-helper when copying crafted invalid files. This occurs due to inefficient regular expression handling, which can lead to excessive resource consumption.

Recommendations For scaffold-helper version 1.2.0, consider updating to a newer version that addresses the ReDOS vulnerability, if available. As a temporary workaround, restrict the copying of files to trusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.