Lucene search
Redhat.comRH:CVE-2018-13863HistoryJul 10, 2018 - 11:48 p.m.
CVE-2018-13863
2018-07-1023:48:49
redhat.com
access.redhat.com
8
0.001 Low
EPSS
Percentile
46.0%
The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service (ReDoS) in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString() function is called to parse a long untrusted string.
Related
osv
osv
js-bson vulnerable to REDoS
2018-09-17 20:44:58
CVE-2018-13863
2018-07-10 20:29:00
cve
cve
CVE-2018-13863
2022-10-03 16:22:20
ubuntucve
ubuntucve
CVE-2018-13863
2018-07-10 00:00:00
github
github
js-bson vulnerable to REDoS
2018-09-17 20:44:58
nvd
nvd
CVE-2018-13863
2018-07-10 20:29:00
prion
prion
Design/Logic Flaw
2018-07-10 20:29:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2018-05-14 04:27:56
cvelist
cvelist
CVE-2018-13863
2022-10-03 16:22:20
debiancve
debiancve
CVE-2018-13863
2022-10-03 16:22:20