Lucene search
K

26 matches found

Github Security Blog
Github Security Blog
added 2021/04/06 5:28 p.m.51 views

Regular expression Denial of Service in multiple packages

Impact A regular expression denial of service ReDoS vulnerability has been discovered in multiple CKEditor 5 packages. The vulnerability allowed to abuse particular regular expressions, which could cause a significant performance drop resulting in a browser tab freeze. It affects all users using...

6.5CVSS3.5AI score0.01667EPSS
Exploits0References12Affected Software8
Node.js
Node.js
added 2021/02/23 1:44 a.m.67 views

Regular Expression Denial of Service

Overview In affected versions of @ckeditor/ckeditor5-markdown-gfm a regular expression denial of service ReDoS vulnerability has been discovered. Impact The vulnerability allowed to abuse a link recognition regular expression, which could cause a significant performance drop resulting in a browse...

4CVSS6.3AI score0.01792EPSS
Exploits0Affected Software1
OSV
OSV
added 2021/01/29 10:15 p.m.20 views

CVE-2021-21254

CKEditor 5 is an open source rich text editor framework with a modular architecture. The CKEditor 5 Markdown plugin @ckeditor/ckeditor5-markdown-gfm before version 25.0.0 has a regex denial of service ReDoS vulnerability. The vulnerability allowed to abuse link recognition regular expression, whi...

6.5CVSS6.3AI score
Exploits0References3
Cvelist
Cvelist
added 2021/01/29 9:55 p.m.23 views

CVE-2021-21254 Regular expression Denial of Service in Markdown plugin

CKEditor 5 is an open source rich text editor framework with a modular architecture. The CKEditor 5 Markdown plugin @ckeditor/ckeditor5-markdown-gfm before version 25.0.0 has a regex denial of service ReDoS vulnerability. The vulnerability allowed to abuse link recognition regular expression, whi...

6.5CVSS6.5AI score0.01792EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2021/01/29 9:51 p.m.56 views

CKEditor 5 Markdown plugin Regular expression Denial of Service

Impact A regular expression denial of service ReDoS vulnerability has been discovered in the CKEditor 5 Markdown plugin code. The vulnerability allowed to abuse a link recognition regular expression, which could cause a significant performance drop resulting in a browser tab freeze. It affects al...

6.5CVSS2.9AI score0.01792EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.36 views

openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2019-774)

This update for java-180-openjdk to the jdk8u181 icedtea 3.9.0 release fixes the following issues : These security issues were fixed : - CVE-2018-2938: Difficult to exploit vulnerability allowed unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

9CVSS6.3AI score0.04676EPSS
Exploits0References9
Rows per page
Query Builder