Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/minimatch — 5 CVEs · VulnScope
pkg:npm/
minimatch
5 total CVEs
HIGH
5
✅ Check your installed version
Check
All known vulnerabilities
HIGH
7.5
CVE-2026-27903
minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments
>= 10.0.0, < 10.2.3
HIGH
7.5
CVE-2026-27904
minimatch ReDoS: nested *() extglobs generate catastrophically backtracking regular expressions
>= 10.0.0, < 10.2.3
HIGH
7.5
CVE-2026-26996
minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern
>= 10.0.0, < 10.2.1
HIGH
7.5
node-minimatch - security update
from 0, < 3.0.5
HIGH
7.5
Regular Expression Denial of Service in minimatch
from 0, < 3.0.2
CVE-2022-3517
CVE-2016-10540