Lucene search
PRIOn knowledge basePRION:CVE-2024-21490HistoryFeb 10, 2024 - 5:15 a.m.
Input validation
2024-02-1005:15:00
PRIOn knowledge base
www.prio-n.com
13
input validation
package vulnerability
denial of service
eol
migration
nvd
0.001 Low
EPSS
Percentile
20.3%
This affects versions of the package angular from 1.3.0. A regular expression used to split the value of the ng-srcset directive is vulnerable to super-linear runtime due to backtracking. With large carefully-crafted input, this can result in catastrophic backtracking and cause a denial of service.
Note:
This package is EOL and will not receive any updates to address this issue. Users should migrate to @angular/core.
Related
osv
osv
angular vulnerable to super-linear runtime due to backtracking
2024-02-10 06:30:19
CVE-2024-21490
2024-02-10 05:15:08
debiancve
debiancve
CVE-2024-21490
2024-02-10 05:15:08
redhatcve
redhatcve
CVE-2024-21490
2024-02-14 21:31:13
cve
cve
CVE-2024-21490
2024-02-10 05:15:08
github
github
angular vulnerable to super-linear runtime due to backtracking
2024-02-10 06:30:19
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2024-03-29 06:54:02
ubuntucve
ubuntucve
CVE-2024-21490
2024-02-10 00:00:00
cvelist
cvelist
CVE-2024-21490
2024-02-10 05:00:01
nvd
nvd
CVE-2024-21490
2024-02-10 05:15:08