Node.js codemirror module is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw. By using sub-pattern (s|/*.*?*/)*, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Denial of service
Node.js codemirror 5.58.1
Upgrade to the latest version of codemirror (5.58.2 or later)..