Lucene search
+L

6 matches found

nessus
nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-26271

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific...

6.5CVSS6.8AI score0.01962EPSS
Exploits0References2
ibm
ibm
added 2022/02/22 2:31 p.m.29 views

Security Bulletin: IBM Sterling Global Mailbox is vulnerable to denial of service due to CKeditor WYSIWYG editor (CVE-2021-26271, CVE-2021-26272)

Summary CKeditor WYSIWYG editor is shipped with IBM Sterling Global Mailbox. Denial of service vulnerabilities impact CKeditor WYSIWYG editor. Remediation is available for the issues. Vulnerability Details CVEID: CVE-2021-26271 DESCRIPTION: CKEditor is vulnerable to a denial of service, caused by...

6.5CVSS6.9AI score0.02223EPSS
Exploits0Affected Software1
ibm
ibm
added 2021/08/25 5:44 p.m.33 views

Security Bulletin: IBM API Connect is impacted by vulnerabilities in Drupal CKEditor (CVE-2021-26271, CVE-2021-26272)

Summary IBM API Connect has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2021-26271 DESCRIPTION: CKEditor is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw in the Advanced Tab for Dialogs plugin. By persuading a victim t...

6.5CVSS1.3AI score0.02223EPSS
Exploits0
openvas
openvas
added 2021/01/28 12:0 a.m.31 views

CKEditor 4.0 < 4.16 Multiple ReDoS Vulnerabilities - Windows

CKEditor is prone to multiple regular expression denial of service ReDoS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Th...

6.5CVSS6.8AI score0.02223EPSS
Exploits0References1
openvas
openvas
added 2021/01/28 12:0 a.m.22 views

CKEditor 4.0 < 4.16 Multiple ReDoS Vulnerabilities - Linux

CKEditor is prone to multiple regular expression denial of service ReDoS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Th...

6.5CVSS6.8AI score0.02223EPSS
Exploits0References1
cve
cve
added 2021/01/26 8:39 p.m.563 views

CVE-2021-26271

CVE-2021-26271 affects CKEditor 4 before 4.16. An attacker could trigger a ReDoS-type DoS by persuading a victim to paste crafted text into the Styles input of dialogs (Advanced Tab in the Dialogs plugin). Affected versions are CKEditor 4.x prior to 4.16; remediation is to upgrade to 4.16 or newe...

6.5CVSS6.6AI score0.01962EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder