VDB

CVE-2017-20165

CVE-2017-20165 PUBLISHED

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. The identifier of the patch is c38a0166c266a679c8de012d4eaccec3f944e685. It is recommended to upgrade the affected component. The identifier VDB-217665 was assigned to this vulnerability.

EPSS 1.58% · 81.9th percentile

Risk Scores

EPSS Score
1.58%
81.9th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSnode-debug0, *
Ubuntu:18.04:LTSnode-debug0, 2.5.1-2, 3.1.0-1

Exploit Intelligence

…and 13 more exploits

Timeline

  • Jan 9, 2023 CVE Published
  • Jan 10, 2023 EPSS Score
  • Feb 2, 2023 CVE Updated
  • Feb 20, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 13, 2023 EPSS Score
  • Aug 3, 2023 EPSS Score
  • Sep 13, 2023 EPSS Score
  • Dec 3, 2023 EPSS Score
  • Jan 13, 2024 EPSS Score
  • Apr 4, 2024 EPSS Score
  • May 15, 2024 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›