Vulnerabilities > Adaltas > Printf > 0.4.0

DATE CVE VULNERABILITY TITLE RISK
2021-03-12 CVE-2021-23354 Unspecified vulnerability in Adaltas Printf
The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex string /\%(?:\(([\w_.]+)\)|([1-9]\d*)\$)?([0 +\-\]*)(\*|\d+)?(\.)?(\*|\d+)?[hlL]?([\%bscdeEfFgGioOuxX])/g in lib/printf.js.
network
low complexity
adaltas
7.5
7.5