PT-2023-10617 · Debug-Js · Debug-Js
Published
2023-01-09
·
Updated
2024-05-17
·
CVE-2017-20165
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
debug-js debug versions up to 3.0.x
debug-js debug version 2.6.x up to 2.6.8
Description
A vulnerability has been found in debug-js debug, affecting the
useColors function of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity.Recommendations
For versions up to 3.0.x, upgrade to version 3.1.0 to address this issue.
For version 2.6.x, upgrade to version 2.6.9 to address this issue.
Exploit
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debug-Js