Releases22
Frequency2 months 1 week
Last Release
A modern CSS parser and stringifier with TypeScript support

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
< 4.3.25.3 MEDIUM

@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS.

< 4.3.15.3 MEDIUM

@adobe/css-tools version 4.3.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a minor denial of service while attempting to parse CSS. Exploitation of this issue does not require user interaction or privileges.