NodeRedis/node-redis

NodeRedis/node-redis

Releases410
Frequency2 weeks 18 minutes
Last Release

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
5.3 MEDIUM5 MEDIUM

Node-redis is a Node.js Redis client. Before version 3.1.1, when a client is in monitoring mode, the regex begin used to detected monitor messages could cause exponential backtracking on some strings. This issue could lead to a denial of service. The issue is patched in version 3.1.1.