Npmjs Semver
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Npmjs Semver.
By the Year
In 2026 there have been 0 vulnerabilities in Npmjs Semver. Semver did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
It may take a day or so for new Semver vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Npmjs Semver Security Vulnerabilities
ReDoS in semver Range constructor (before 7.5.2)
CVE-2022-25883
7.5 - High
- June 21, 2023
Versions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range, when untrusted user data is provided as a range.
ReDoS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Npmjs Semver or by Npmjs? Click the Watch button to subscribe.
