Scss-tokenizer Project Scss-tokenizer — known CVE vulnerabilities
Every CVE whose affected-product data names Scss-tokenizer Project Scss-tokenizer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2022-25758 — CVSS 5.3 (medium): All versions of package scss-tokenizer are vulnerable to Regular Expression Denial of Service (ReDoS) via the loadAnnotation() function…