VulnerableCode Package Details - pkg:npm/semver@1.1.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-1tme-dh4y-a3dq Aliases: CVE-2015-8855 GHSA-x6fg-f45m-jf5q	Regular Expression Denial of Service in semver Versions 4.3.1 and earlier of `semver` are affected by a regular expression denial of service vulnerability when extremely long version strings are parsed.	4.3.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-m6ct-n9hk-h3g4 Aliases: GMS-2015-9	Regular Expression Denial of Service semver is vulnerable to regular expression denial of service when extremely long version strings are parsed.	4.3.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-1tme-dh4y-a3dq
Aliases:
CVE-2015-8855
GHSA-x6fg-f45m-jf5q

Regular Expression Denial of Service in semver Versions 4.3.1 and earlier of `semver` are affected by a regular expression denial of service vulnerability when extremely long version strings are parsed.

4.3.2
Affected by 1 other vulnerability.

VCID-m6ct-n9hk-h3g4
Aliases:
GMS-2015-9

Regular Expression Denial of Service semver is vulnerable to regular expression denial of service when extremely long version strings are parsed.

4.3.2
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:39:54.280055+00:00	GitLab Importer	Affected by	VCID-1tme-dh4y-a3dq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/CVE-2015-8855.yml	38.4.0
2026-04-16T20:32:23.464678+00:00	GitLab Importer	Affected by	VCID-m6ct-n9hk-h3g4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/GMS-2015-9.yml	38.4.0
2026-04-11T21:50:40.637964+00:00	GitLab Importer	Affected by	VCID-1tme-dh4y-a3dq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/CVE-2015-8855.yml	38.3.0
2026-04-11T21:42:47.397471+00:00	GitLab Importer	Affected by	VCID-m6ct-n9hk-h3g4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/GMS-2015-9.yml	38.3.0
2026-04-02T22:04:29.490527+00:00	GitLab Importer	Affected by	VCID-1tme-dh4y-a3dq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/CVE-2015-8855.yml	38.1.0
2026-04-02T21:56:56.645448+00:00	GitLab Importer	Affected by	VCID-m6ct-n9hk-h3g4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/GMS-2015-9.yml	38.1.0
2026-04-01T16:21:26.507635+00:00	GitLab Importer	Affected by	VCID-1tme-dh4y-a3dq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/CVE-2015-8855.yml	38.0.0
2026-04-01T16:14:07.375097+00:00	GitLab Importer	Affected by	VCID-m6ct-n9hk-h3g4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/semver/GMS-2015-9.yml	38.0.0