CVE-2022-37260

Identifiers

CVE-2022-37260

Package Slug

npm/steal

Vulnerability

Incorrect Comparison

Description

A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the input variable in main.js.

Affected Versions

Version 2.2.4

Solution

Upgrade to version 2.3.0 or above.

Last Modified

2022-09-20