A Regular expression denial of service (ReDoS) flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js.
References
Link | Resource |
---|---|
https://github.com/webpack/loader-utils/blob/d9f4e23cf411d8556f8bac2d3bf05a6e0103b568/lib/interpolateName.js#L38 | Exploit Third Party Advisory |
https://github.com/webpack/loader-utils/blob/d9f4e23cf411d8556f8bac2d3bf05a6e0103b568/lib/interpolateName.js#L107 | Exploit Third Party Advisory |
https://github.com/webpack/loader-utils/issues/213 | Issue Tracking Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-10-14 09:15
Updated : 2022-11-17 06:13
NVD link : CVE-2022-37603
Mitre link : CVE-2022-37603
JSON object : View
CWE
Products Affected
webpack.js
- loader-utils