The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| terser(npm) | 0 | 4.8.1 | N/A |
| terser(npm) | 5.0.0 | 5.14.2 | N/A |
CVSS Metrics
