CVE-2022-37262

Uncontrolled Resource Consumption in npm/steal

Identifiers

CVE-2022-37262

Package Slug

npm/steal

Vulnerability

Uncontrolled Resource Consumption

Description

A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the source and sourceWithComments variable in main.js.

Affected Versions

Version 2.2.4

Solution

Upgrade to version 2.3.0 or above.

Last Modified

2022-09-20

source