Lucene search
China National Vulnerability DatabaseCNVD-2022-66398HistoryJun 28, 2022 - 12:00 a.m.
validate-color denial-of-service vulnerability (CNVD-2022-66398)
2022-06-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
37.0%
validate-color is a personal development by Wallace Sidhrée of Norway for validating HTML colors. validate-color v2.1.0 contains a denial-of-service vulnerability that stems from a failure to properly handle crafted invalid rgb(a) strings, which can be exploited by attackers to cause a regular expression denial of service ( ReDOS).
| CPE | Name | Operator | Version |
|---|---|---|---|
| validate-color validate-color v | eq | 2.1.0 |
Related
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2022-06-27 15:59:38
cve
cve
CVE-2021-40892
2022-06-24 14:15:07
osv
osv
CVE-2021-40892
2022-06-24 14:15:07
prion
prion
Denial of service
2022-06-24 14:15:00
cvelist
cvelist
CVE-2021-40892
2022-06-24 13:29:24
nvd
nvd
CVE-2021-40892
2022-06-24 14:15:07