CVE-2025-65122
Deferred
Deferred - Pending Action
Regex Denial of Service in youtube-regex npm package
Publication date: 2026-05-07
Last updated on: 2026-05-07
Assigner: MITRE
Description
Description
Regex Denial of Service in youtube-regex npm package through version 1.0.5.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| regexhq | youtube-regex | 1.0.5 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-400 | The product does not properly control the allocation and maintenance of a limited resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Regex Denial of Service (ReDoS) issue found in the youtube-regex npm package through version 1.0.5.
How can this vulnerability impact me? :
The vulnerability can be exploited to cause a denial of service by making the regex processing consume excessive CPU resources, leading to application unavailability or degraded performance.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided information does not specify how the Regex Denial of Service vulnerability in the youtube-regex npm package affects compliance with common standards and regulations such as GDPR or HIPAA.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70