Lucene search
MitreCVELIST:CVE-2018-13863HistoryOct 03, 2022 - 4:22 p.m.
CVE-2018-13863
2022-10-0316:22:20
mitre
www.cve.org
mongodb
javascript module
regular expression denial of service
0.001 Low
EPSS
Percentile
46.0%
The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service (ReDoS) in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString() function is called to parse a long untrusted string.
Related
osv
osv
js-bson vulnerable to REDoS
2018-09-17 20:44:58
CVE-2018-13863
2018-07-10 20:29:00
cve
cve
CVE-2018-13863
2022-10-03 16:22:20
ubuntucve
ubuntucve
CVE-2018-13863
2018-07-10 00:00:00
nvd
nvd
CVE-2018-13863
2018-07-10 20:29:00
prion
prion
Design/Logic Flaw
2018-07-10 20:29:00
redhatcve
redhatcve
CVE-2018-13863
2018-07-10 23:48:49
github
github
js-bson vulnerable to REDoS
2018-09-17 20:44:58
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2018-05-14 04:27:56
debiancve
debiancve
CVE-2018-13863
2022-10-03 16:22:20