CVE-2026-9496 | pacote up to 11.2.7 addGitSha redos (SNYK-JS-PACOTE-8225084)

Inserito da Angelo Barbosa | Mag 26, 2026 | CVE

A vulnerability identified as problematic has been detected in pacote up to 11.2.7. This impacts the function addGitSha. This manipulation causes inefficient regular expression complexity.

This vulnerability is registered as CVE-2026-9496. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-9496 | pacote up to 11.2.7 addGitSha redos (SNYK-JS-PACOTE-8225084)

Post correlati

CVE-2024-4167 | Tenda 4G300 1.01.42 sub_422AA4 year/month/day/hour/minute/second stack-based overflow

CVE-2024-22269 | VMware Workstation/Fusion vbluetooth Device information disclosure

CVE-2025-54536 | JetBrains TeamCity up to 2025.03.3 GraphQL Endpoint cross-site request forgery

CVE-2024-23850 | Linux Kernel up to 6.7.1 fs/btrfs/disk-io.c btrfs_get_root_ref assertion