Description
The mime module < 1.4.1, 2.0.1, 2.0.2 is vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.
Remediation
References
https://github.com/broofa/node-mime/issues/167
https://nodesecurity.io/advisories/535
Related Vulnerabilities
CVE-2020-28426 Vulnerability in npm package kill-process-on-port
CVE-2021-21162 Vulnerability in npm package electron
CVE-2020-36048 Vulnerability in maven package org.webjars.bower:engine.io
CVE-2022-23496 Vulnerability in maven package nl.basjes.parse.useragent:yauaa-hive
CVE-2023-33202 Vulnerability in maven package org.bouncycastle:bc-fips-debug