Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:28 a.m.8 views

CVE-2024-5552

kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service ReDoS attack due to inefficient regular expression complexity in its email validation mechanism. An attacker can remotely exploit this vulnerability without authentication by providing specially crafted input that causes th...

7.5CVSS7.5AI score0.00649EPSS
Exploits1References1
NVD
NVD
added 2024/06/06 7:16 p.m.19 views

CVE-2024-5552

kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service ReDoS attack due to inefficient regular expression complexity in its email validation mechanism. An attacker can remotely exploit this vulnerability without authentication by providing specially crafted input that causes th...

7.5CVSS0.00649EPSS
Exploits1References1
CVE
CVE
added 2024/06/06 6:9 p.m.69 views

CVE-2024-5552

CVE-2024-5552 affects kubeflow/kubeflow, specifically the centraldashboard-angular backend component. The vulnerability arises from inefficient regular expression complexity in the email validation logic, enabling a remote, unauthenticated attacker to trigger a denial of service via crafted input...

7.5CVSS7.5AI score0.00649EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/06/06 6:9 p.m.7 views

CVE-2024-5552 ReDoS in kubeflow/kubeflow

kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service ReDoS attack due to inefficient regular expression complexity in its email validation mechanism. An attacker can remotely exploit this vulnerability without authentication by providing specially crafted input that causes th...

7.5CVSS7.1AI score0.00649EPSS
Exploits1References3
Rows per page
Query Builder