This repository has been archived by the owner on Nov 28, 2021. It is now read-only.
CVE-2018-20822 (Medium) detected in opennmsopennms-source-22.0.1-1 #9
Labels
security vulnerability
Security vulnerability detected by WhiteSource
CVE-2018-20822 - Medium Severity Vulnerability
Vulnerable Library - opennmsopennms-source-22.0.1-1
A Java based fault and performance management system
Library home page: https://sourceforge.net/projects/opennms/
Found in HEAD commit: a8d198c123b74b0d4aa91ab05be478b93203afaf
Vulnerable Source Files (1)
cuddly-computing-machine/node_modules/node-sass/src/libsass/src/ast.hpp
Vulnerability Details
LibSass 3.5.4 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Complex_Selector::perform in ast.hpp and Sass::Inspect::operator in inspect.cpp).
Publish Date: 2019-04-23
URL: CVE-2018-20822
CVSS 3 Score Details (6.5)
Base Score Metrics:
Suggested Fix
Type: Upgrade version
Origin: https://github.com/sass/libsass/releases/tag/3.5.5
Release Date: 2019-04-23
Fix Resolution: libsass - 3.5.5;node-sass - 4.14.0
Step up your Open Source Security Game with WhiteSource here
The text was updated successfully, but these errors were encountered: