CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2023/01/02 9:31 a.m.•15 views

GHSA-PFRM-4RJW-G9Q5 string-kit Inefficient Regular Expression Complexity vulnerability

A vulnerability classified as problematic was found in cronvel string-kit up to 0.12.7. This vulnerability affects the function naturalSort of the file lib/naturalSort.js. The manipulation leads to inefficient regular expression complexity. The attack can be initiated remotely. Upgrading to versi...

7.5CVSS7.5AI score0.00492EPSS

Exploits0References6

Github Security Blog•added 2023/01/02 9:31 a.m.•26 views

string-kit Inefficient Regular Expression Complexity vulnerability

7.5CVSS4.1AI score0.00492EPSS

Exploits0References6Affected Software1

OSV•added 2023/01/02 8:15 a.m.•8 views

CVE-2021-4299

7.5CVSS7.6AI score

Exploits0References4

Prion•added 2023/01/02 8:15 a.m.•13 views

Design/Logic Flaw

5CVSS7.6AI score0.00492EPSS

Exploits0References4Affected Software1

Cvelist•added 2023/01/02 7:57 a.m.•9 views

CVE-2021-4299 cronvel string-kit naturalSort.js naturalSort redos

4.3CVSS7.8AI score0.00492EPSS

Exploits0References4

CVE•added 2023/01/02 7:57 a.m.•46 views

CVE-2021-4299

The CVE-2021-4299 issue affects cronvel string-kit up to v0.12.7, specifically the naturalSort function in lib/naturalSort.js. The vulnerability stems from inefficient regular-expression complexity, enabling a remote attacker to cause performance-based impact (DoS). Upgrading to v0.12.8 mitigates...

7.5CVSS5.8AI score0.00492EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by