Package impact
npm / marked
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41680 | high | 7.5 | 7.5 | 1mo ago | Marked Vulnerable to OOM Denial of Service via Infinite Recursion in marked Tokenizer | |||
| CVE-2015-8854 | high | 7.5 | 7.5 | 10y ago | The marked package before 0.3.4 for Node.js allows attackers to cause a denial of service (CPU consumption) via unspecified vectors that trigger a "catastrophic backtracking issue for the em inline r… |