Vulnerabilities > Brace Expansion Project

DATE CVE VULNERABILITY TITLE RISK
2018-01-27 CVE-2017-18077 Improper Input Validation vulnerability in Brace Expansion Project Brace Expansion
index.js in brace-expansion before 1.1.7 is vulnerable to Regular Expression Denial of Service (ReDoS) attacks, as demonstrated by an expand argument containing many comma characters.
network
low complexity
brace-expansion-project CWE-20
5.0