Lucene search
Redhat.comRH:CVE-2023-43646HistorySep 28, 2023 - 11:54 a.m.
CVE-2023-43646
2023-09-2811:54:38
redhat.com
access.redhat.com
34
vulnerability
get-func-name
chai module
regular expression denial of service
redos
system availability
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS
0.001
Percentile
20.5%
A vulnerability was found in the get-func-name package in the chai module. Affected versions of this package are vulnerable to Regular expression denial of service (ReDoS) attacks, affecting system availability.
Related
prion
prion
Input validation
2023-09-27 15:19:00
debiancve
debiancve
CVE-2023-43646
2023-09-27 15:19:34
github
github
Chaijs/get-func-name vulnerable to ReDoS
2023-09-27 20:16:00
cvelist
cvelist
CVE-2023-43646 Inefficient Regular Expression Complexity in get-func-name
2023-09-26 18:19:29
nvd
nvd
CVE-2023-43646
2023-09-27 15:19:34
osv
osv
CVE-2023-43646
2023-09-27 15:19:34
Chaijs/get-func-name vulnerable to ReDoS
2023-09-27 20:16:00
cve
cve
CVE-2023-43646
2023-09-27 15:19:34
ubuntucve
ubuntucve
CVE-2023-43646
2023-09-27 00:00:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2023-10-04 12:48:26
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS
0.001
Percentile
20.5%
Related for RH:CVE-2023-43646