Debian/node-path-to-regexp — 4 CVEs

HIGH7.5CVE-2026-4926path-to-regexp vulnerable to Denial of Service via sequential optional groups

from 0

HIGH7.5CVE-2026-4867path-to-regexp vulnerable to Regular Expression Denial of Service via multiple route parameters

from 0, < 1.0.1-1

HIGH7.5CVE-2024-45296path-to-regexp outputs backtracking regular expressions

from 0

MEDIUM5.9path-to-regexp vulnerable to Regular Expression Denial of Service via multiple wildcards

from 0

pkg:Debian/node-path-to-regexp