CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-16023

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/sindresorhus/decamelize/issues/5
https://nodesecurity.io/advisories/308
https://github.com/sindresorhus/decamelize/issues/5
https://nodesecurity.io/advisories/308

Products affected by CVE-2017-16023

Decamelize Project » Decamelize » Version: 1.1.0

cpe:2.3:a:decamelize_project:decamelize:1.1.0
Decamelize Project » Decamelize » Version: 1.1.1

cpe:2.3:a:decamelize_project:decamelize:1.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16023

Products

Pricing

Contact Us