Lucene search
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_113312HistoryJul 19, 2022 - 12:00 a.m.
Moment.js 2.18.x < 2.29.4 Regular Expression Denial of Service
2022-07-1900:00:00
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
According to its self-reported version number, Moment.js is 2.18.x prior to 2.29.4. Therefore, it may be affected by a regular expression denial of service vulnerability via the preprocessRFC2822() function in from-string.js, when processing a very long crafted string.
Note that the scanner has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
No source data| Vendor | Product | Version | CPE |
|---|---|---|---|
| moment_project | moment | * | cpe:2.3:a:moment_project:moment:*:*:*:*:*:*:*:* |