Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistGitHub_MCVELIST:CVE-2024-41818
HistoryJul 29, 2024 - 3:56 p.m.

CVE-2024-41818

2024-07-2915:56:38
GitHub_M
www.cve.org
17
xml parser
javascript
redos
currency parsing

EPSS

0.001

Percentile

21.9%

JSON

fast-xml-parser is an open source, pure javascript xml parser. a ReDOS exists on currency.js. This vulnerability is fixed in 4.4.1.

CNA Affected

[
  {
    "vendor": "NaturalIntelligence",
    "product": "fast-xml-parser",
    "versions": [
      {
        "version": "< 4.4.1",
        "status": "affected"
      }
    ]
  }
]

Related

nvd 1
veracode 1
cve 1
ibm 1
osv 4
redhatcve 1
wolfi 1
vulnrichment 1
github 1
redhat 2
nvd
nvd
CVE-2024-41818
2024-07-29 16:15:05
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2024-07-30 09:55:57
cve
cve
CVE-2024-41818
2024-07-29 16:15:05
ibm
ibm
Security Bulletin: IBM Decision Optimization for Cloud Pak for Data is vulnerable to a Denial of Service (CVE-2024-41818)
2024-09-05 16:32:17
osv
osv
CVE-2024-41818
2024-07-29 16:15:05
fast-xml-parser vulnerable to ReDOS at currency parsing
2024-07-29 17:46:16
CGA-cr5v-98hj-38hr
2024-08-01 14:04:52
redhatcve
redhatcve
CVE-2024-41818
2024-07-31 08:19:34
wolfi
wolfi
CVE-2024-41818 vulnerabilities
2024-09-21 15:27:10
vulnrichment
vulnrichment
CVE-2024-41818
2024-07-29 15:56:38
github
github
fast-xml-parser vulnerable to ReDOS at currency parsing
2024-07-29 17:46:16
redhat
redhat
(RHSA-2024:6755) Important: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update
2024-09-18 11:54:53
(RHSA-2024:5054) Important: OpenShift Virtualization 4.16.1 Images security update
2024-08-06 16:19:43

EPSS

0.001

Percentile

21.9%

JSON
Related for CVELIST:CVE-2024-41818
nvd1veracode1cve1ibm1osv4redhatcve1wolfi1vulnrichment1github1redhat2