Lucene search
GoogleOSV:CVE-2021-28092HistoryMar 12, 2021 - 10:15 p.m.
CVE-2021-28092
2021-03-1222:15:14
Google
osv.dev
11
node.js
package
redos
vulnerability
is-svg
The is-svg package 2.1.0 through 4.2.1 for Node.js uses a regular expression that is vulnerable to Regular Expression Denial of Service (ReDoS). If an attacker provides a malicious string, is-svg will get stuck processing the input for a very long time.
Related
cvelist
cvelist
CVE-2021-28092
2021-03-12 21:31:35
github
github
Regular Expression Denial of Service (ReDoS)
2021-03-19 21:25:50
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-03-15 06:24:10
nvd
nvd
CVE-2021-28092
2021-03-12 22:15:14
cve
cve
CVE-2021-28092
2021-03-12 22:15:14
redhatcve
redhatcve
CVE-2021-28092
2021-03-15 16:32:10
prion
prion
Design/Logic Flaw
2021-03-12 22:15:00
osv
osv
Regular Expression Denial of Service (ReDoS)
2021-03-19 21:25:50
ibm
ibm
redhat
redhat
kitploit
kitploit