Vulnerabilities > Npmjs > Semver

DATE CVE VULNERABILITY TITLE RISK
2023-06-21 CVE-2022-25883 Unspecified vulnerability in Npmjs Semver
Versions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range, when untrusted user data is provided as a range.
network
low complexity
npmjs
7.5