Vulnerabilities > Ssri Project

DATE CVE VULNERABILITY TITLE RISK
2021-03-12 CVE-2021-27290 ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service.
network
low complexity
ssri-project oracle siemens
7.5
2018-03-04 CVE-2018-7651 Resource Exhaustion vulnerability in Ssri Project Ssri
index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash string.
network
high complexity
ssri-project CWE-400
5.9