Lucene search
PRIOn knowledge basePRION:CVE-2023-23621HistoryJan 28, 2023 - 12:15 a.m.
Design/Logic Flaw
2023-01-2800:15:00
PRIOn knowledge base
www.prio-n.com
2
discourse
version 3.0.1
stable branch
version 3.1.0.beta2
beta branch
tests-passed branch
regular expression
denial of service
0.001 Low
EPSS
Percentile
34.7%
Discourse is an open-source discussion platform. Prior to version 3.0.1 on the stable branch and version 3.1.0.beta2 on the beta and tests-passed branches, a malicious user can cause a regular expression denial of service using a carefully crafted user agent. This issue is patched in version 3.0.1 on the stable branch and version 3.1.0.beta2 on the beta and tests-passed branches. There are no known workarounds.
Related
osv
osv
BIT-discourse-2023-23621
2024-03-06 11:00:18
CVE-2023-23621
2023-01-28 00:15:09
cvelist
cvelist
CVE-2023-23621 Discourse vulnerable to ReDoS in user agent parsing
2023-01-27 23:31:05
cve
cve
CVE-2023-23621
2023-01-28 00:15:09
nvd
nvd
CVE-2023-23621
2023-01-28 00:15:09
openvas
openvas
Discourse 3.1.x < 3.1.0.beta2 Multiple Vulnerabilities
2023-01-27 00:00:00
Discourse < 3.0.1 Multiple Vulnerabilities
2023-01-27 00:00:00