Skip to main content

Incorrect Comparison

CVE-2022-37260

Severity High
Score 7.5/10

Summary

A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal via the input variable in "main.js".

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-697 - Incorrect Comparison

The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

Advisory Timeline

  • Published