Vulnerability DatabaseWS-2019-0307
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
WS-2019-0307
Published:May 14, 2026
Updated:May 14, 2026
In 'mem' before v4.0.0 there is a Denial of Service (DoS) vulnerability as a result of a failure in removal old values from the cache.
Affected Packages
genenotebook (CONDA):
Affected version(s) >=0.1.1 <0.1.14
Fix Suggestion:
Update to version 0.1.14
nodejs (CONDA):
Affected version(s) >=13.0.0 <13.9.0
Fix Suggestion:
Update to version 13.9.0
nodejs (CONDA):
Affected version(s) =6.11.2 <6.12.0
Fix Suggestion:
Update to version 6.12.0
nodejs (CONDA):
Affected version(s) >=11.4.0 <12.18.3
Fix Suggestion:
Update to version 12.18.3
nodejs (CONDA):
Affected version(s) >=8.8.1 <10.22.0
Fix Suggestion:
Update to version 10.22.0
mem (NPM):
Affected version(s) >=0.1.0 <4.0.0
Fix Suggestion:
Update to version 4.0.0
systemext.languages.node.runtime.osx-x64 (NUGET):
Affected version(s) =10.13.1
Fix Suggestion:
Update to version no_fix
systemext.languages.node.runtime.linux-arm64 (NUGET):
Affected version(s) =10.13.1
Fix Suggestion:
Update to version no_fix
fable.library.template (NUGET):
Affected version(s) >=0.1.0-alpha002 <=0.1.0-alpha003
Fix Suggestion:
Update to version no_fix
systemext.languages.node.runtime.linux-arm (NUGET):
Affected version(s) =10.13.1
Fix Suggestion:
Update to version no_fix
blazorpolyfill.build (NUGET):
Affected version(s) =6.0.100.1 <6.0.100.2
Fix Suggestion:
Update to version 6.0.100.2
indianadavy.vuejswebapitemplate.csharp (NUGET):
Affected version(s) =1.0.0 <1.0.1
Fix Suggestion:
Update to version 1.0.1
gr.pagerender.razor (NUGET):
Affected version(s) >=1.6.0 <1.8.0
Fix Suggestion:
Update to version 1.8.0
pwptemplatecms (NUGET):
Affected version(s) >=0.0.1 <=0.0.2
Fix Suggestion:
Update to version no_fix
systemext.languages.node.runtime.linux-x64 (NUGET):
Affected version(s) =10.13.1
Fix Suggestion:
Update to version no_fix
vuetemplate (NUGET):
Affected version(s) =0.1.0
Fix Suggestion:
Update to version no_fix
node-kit (NUGET):
Affected version(s) >=11.1.0 <=11.1.0.1
Fix Suggestion:
Update to version no_fix
pwptemplatepusintek (NUGET):
Affected version(s) =0.0.1
Fix Suggestion:
Update to version no_fix
chrisbraybrooke/laravel-ecommerce (PHP):
Affected version(s) =dev-dev <dev-form-field-key
Fix Suggestion:
Update to version dev-form-field-key
narirock/marrs-catalog (PHP):
Affected version(s) >=dev-dev <=1
Fix Suggestion:
Update to version no_fix
humanmade/workflows (PHP):
Affected version(s) =dev-gh-actions <dev-master
Fix Suggestion:
Update to version dev-master
oburatongoi/productivity (PHP):
Affected version(s) >=0.3.36 <=0.4.45
Fix Suggestion:
Update to version no_fix
humanmade/workflows (PHP):
Affected version(s) =0.4.7 <0.4.8-rc.1
Fix Suggestion:
Update to version 0.4.8-rc.1
yivic/yivic-elce (PHP):
Affected version(s) >=dev-fixbug/TVNnWKJz-wp-elce-admin-options-header-error-styles-ui-again <=dev-origin/v1.0.1
Fix Suggestion:
Update to version no_fix
chrisbraybrooke/laravel-ecommerce (PHP):
Affected version(s) =0.0.1 <0.0.2
Fix Suggestion:
Update to version 0.0.2
z3/t3build-node (PHP):
Affected version(s) =dev-master <1.0.11
Fix Suggestion:
Update to version 1.0.11
i-saad-salman/statamic-analytics (PHP):
Affected version(s) =dev-main
Fix Suggestion:
Update to version no_fix
miljoen/nova-autofill (PHP):
Affected version(s) =dev-master <v1.0.0
Fix Suggestion:
Update to version v1.0.0
oburatongoi/productivity (PHP):
Affected version(s) =dev-master <0.0.1
Fix Suggestion:
Update to version 0.0.1
scancode/portal-module (PHP):
Affected version(s) =v1.0.0 <v1.0.1
Fix Suggestion:
Update to version v1.0.1
awema-pl/module-psmoduler (PHP):
Affected version(s) >=v1.0.1 <v1.0.4
Fix Suggestion:
Update to version v1.0.4
flexxia/flexprimeng (PHP):
Affected version(s) =dev-anguarJs-v7 <dev-dependabot/npm_and_yarn/css/postcss/y18n-3.2.2
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/css/postcss/y18n-3.2.2
trezebits/trezevel-gallery (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
miljoen/nova-autofill (PHP):
Affected version(s) >=v1.2 <=v1.4
Fix Suggestion:
Update to version no_fix
chrisbraybrooke/laravel-ecommerce (PHP):
Affected version(s) >=v0.0.17 <0.0.56
Fix Suggestion:
Update to version 0.0.56
kraenkvisuell/nova-cms-media (PHP):
Affected version(s) >=v2.0.0 <=v2.1.3
Fix Suggestion:
Update to version no_fix
scancode/portal-module (PHP):
Affected version(s) >=v0.0.1 <v0.0.22
Fix Suggestion:
Update to version v0.0.22
flexxia/flexprimeng (PHP):
Affected version(s) >=dev-dev-demo-primeng-chart <dev-update-angularjs
Fix Suggestion:
Update to version dev-update-angularjs
kraenkvisuell/nova-cms-media (PHP):
Affected version(s) >=v1.0.4 <v1.2.2
Fix Suggestion:
Update to version v1.2.2
kraenkvisuell/nova-cms-media (PHP):
Affected version(s) >=dev-main <v1.0.3
Fix Suggestion:
Update to version v1.0.3
chrisbraybrooke/laravel-ecommerce (PHP):
Affected version(s) >=0.0.4 <0.0.17
Fix Suggestion:
Update to version 0.0.17
zymawy/ironside-core (PHP):
Affected version(s) =dev-master <dev-utils
Fix Suggestion:
Update to version dev-utils
archambaultalex/image-field (PHP):
Affected version(s) =dev-main
Fix Suggestion:
Update to version no_fix
Related Resources (1)
https://github.com/sindresorhus/mem/commit/da4e4398cb27b602de3bd55f746efa9b4a31702b
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.1
Attack Vector
LOCAL
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
LOW
Vulnerable System Integrity
NONE
Vulnerable System Availability
LOW
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
5.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
LOW