EUVD-2022-7508

Malicious code in bioql PyPI...

active_attr Improper Resource Shutdown or Release vulnerability

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.3. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

GHSA-4WHF-RMX5-8FRV active_attr Improper Resource Shutdown or Release vulnerability

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.3. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

active_attr Improper Resource Shutdown or Release vulnerability

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.3. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

CVE-2021-4250

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

CVE-2021-4250

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

Design/Logic Flaw

A vulnerability classified as problematic has been found in cgriego activeattr up to 0.15.2. This affects the function call of the file lib/activeattr/typecasting/booleantypecaster.rb of the component Regex Handler. The manipulation of the argument value leads to denial of service. The exploit ha...

CVE-2021-4250

The CVE-2021-4250 entry concerns the cgriego active_attr Ruby gem (Regex Handler) up to version 0.15.2/0.15.3, where the boolean_typecaster.rb function in lib/active_attr/typecasting can be manipulated to cause a denial of service. Concrete details across connected records identify the vulnerable...

Regular Expression Denial Of Service (ReDoS)

activeattr is vulnerable to regular expression denial of service. The usage of an insecure regular expression in the function call of ActiveAttr::Typecasting::BooleanTypecaste causes a huge processing time, allowing an attacker to cause a denial of service condition using a malicious input...