Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:38053
HistoryNov 16, 2022 - 11:15 p.m.

Regular Expression Denial Of Service (ReDoS)

2022-11-1623:15:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
24
regular expression denial of service
minimatch
braceexpand
denial of service
software

EPSS

0.002

Percentile

55.2%

minimatch is vulnerable to Regular Expression Denial Of Service (ReDoS). The vulnerability exists when calling the braceExpand function of minimatch.js with specific arguments, resulting in a denial of service.