Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package ecstatic, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2015-9242 — CVSS 7.5 (high): Certain input strings when passed to new Date() or Date.parse() in ecstatic node module before 1.4.0 will cause v8 to raise an exception…
CVE-2016-10703 — CVSS 7.5 (high): A regular expression Denial of Service (DoS) vulnerability in the file lib/ecstatic.js of the ecstatic npm package, before version 2.0.0…
CVE-2019-10775 — CVSS 7.5 (high): ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application.