Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.51 views

Ubuntu 18.04 ESM / 20.04 ESM : hosted-git-info vulnerability (USN-5216-1)

The remote Ubuntu 18.04 ESM / 20.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-5216-1 advisory. It was discovered that hosted-git-info incorrectly handled certain inputs. A remote attacker could use this to cause a denial of service. Tenable has...

5.3CVSS6.8AI score0.03612EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/04 8:25 a.m.23 views

CVE-2021-23343 Regular Expression Denial of Service (ReDoS)

All versions of package path-parse are vulnerable to Regular Expression Denial of Service ReDoS via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity...

5.3CVSS8.7AI score0.02218EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/03/23 5:15 p.m.36 views

CVE-2021-23362

The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service ReDoS via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity...

5.3CVSS6.8AI score0.03612EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2021/03/19 9:22 p.m.59 views

printf vulnerable to Regular Expression Denial of Service (ReDoS)

The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service ReDoS via the regex string regex /%?:\w.+|1-9\d$?0 +-\|\d+?.?|\d+?hlL?%bscdeEfFgGioOuxX/g in lib/printf.js. The vulnerable regular expression has cubic worst-case time complexity...

7.5CVSS7.3AI score0.02176EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2021/03/12 3:15 p.m.7 views

CVE-2021-23354

The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service ReDoS via the regex string /%?:\w.+|1-9\d$?0 +-\|\d+?.?|\d+?hlL?%bscdeEfFgGioOuxX/g in lib/printf.js. The vulnerable regular expression has cubic worst-case time complexity...

7.5CVSS0.02176EPSS
Exploits1References3
Prion
Prion
added 2021/03/12 3:15 p.m.17 views

Design/Logic Flaw

The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service ReDoS via the regex string /%?:\w.+|1-9\d$?0 +-\|\d+?.?|\d+?hlL?%bscdeEfFgGioOuxX/g in lib/printf.js. The vulnerable regular expression has cubic worst-case time complexity...

5CVSS7.5AI score0.02176EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder