Lucene search
Veracode Vulnerability DatabaseVERACODE:36171HistoryJun 27, 2022 - 3:59 p.m.
Regular Expression Denial Of Service (ReDoS)
2022-06-2715:59:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
0.001 Low
EPSS
Percentile
37.0%
validate-color is vulnerable to regular expression denial of service (ReDoS) attacks. A remote attacker is able to cause denial of service conditions via injecting crafted invalid rgb(a) strings through validateHTMLColorRgb function.
| CPE | Name | Operator | Version |
|---|---|---|---|
| validate-color | le | 2.2.1 | |
| validate-color | le | 2.2.1 |
Related
cnvd
cnvd
validate-color denial-of-service vulnerability (CNVD-2022-66398)
2022-06-28 00:00:00
cve
cve
CVE-2021-40892
2022-06-24 14:15:07
osv
osv
CVE-2021-40892
2022-06-24 14:15:07
prion
prion
Denial of service
2022-06-24 14:15:00
cvelist
cvelist
CVE-2021-40892
2022-06-24 13:29:24
nvd
nvd
CVE-2021-40892
2022-06-24 14:15:07