CVE-2018-20821

Published
View on NVD ↗
CVSS v3
6.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

The parsing component in LibSass through 3.5.5 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Parser::parse_css_variable_value in parser.cpp).

sass/libsass
sass/libsass
A C/C++ implementation of a Sass compiler
GitHubGitHub
4.33K