cve/CVE-2015-8854.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

942 B

Raw Permalink Blame History

CVE-2015-8854

Description

The marked package before 0.3.4 for Node.js allows attackers to cause a denial of service (CPU consumption) via unspecified vectors that trigger a "catastrophic backtracking issue for the em inline rule," aka a "regular expression denial of service (ReDoS)."

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cve-scores
https://github.com/ARPSyndicate/cvemon
https://github.com/Banyaon/And-ifclcs-
https://github.com/Banyaon/supreme-robot
https://github.com/Banyaon/vigilant-fiesta
https://github.com/HotDB-Community/HotDB-Engine

942 B Raw Permalink Blame History

CVE-2015-8854

Description

POC

Reference

Github

942 B

Raw Permalink Blame History