Total
277 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-3822 | 1 Jsoneditoronline | 1 Jsoneditor | 2024-08-03 | 7.5 High |
| jsoneditor is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3842 | 3 Debian, Fedoraproject, Nltk | 3 Debian Linux, Fedora, Nltk | 2024-08-03 | 7.5 High |
| nltk is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3804 | 1 Taro | 1 Taro | 2024-08-03 | 7.5 High |
| taro is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3820 | 1 Inflect Project | 1 Inflect | 2024-08-03 | 7.5 High |
| inflect is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3828 | 1 Nltk | 1 Nltk | 2024-08-03 | 7.5 High |
| nltk is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3801 | 2 Prismjs, Redhat | 2 Prism, Advanced Cluster Security | 2024-08-03 | 6.5 Medium |
| prism is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3810 | 1 Coder | 1 Code-server | 2024-08-03 | 7.5 High |
| code-server is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3765 | 2 Redhat, Validator Project | 2 Openshift Data Foundation, Validator | 2024-08-03 | 7.5 High |
| validator.js is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3777 | 1 Tmpl Project | 1 Tmpl | 2024-08-03 | 7.5 High |
| nodejs-tmpl is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3807 | 3 Ansi-regex Project, Oracle, Redhat | 10 Ansi-regex, Communications Cloud Native Core Policy, Acm and 7 more | 2024-08-03 | 7.5 High |
| ansi-regex is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3795 | 2 Redhat, Semver-regex Project | 2 Acm, Semver-regex | 2024-08-03 | 7.5 High |
| semver-regex is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3794 | 1 Vuelidate Project | 1 Vuelidate | 2024-08-03 | 7.5 High |
| vuelidate is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3803 | 2 Debian, Nth-check Project | 2 Debian Linux, Nth-check | 2024-08-03 | 7.5 High |
| nth-check is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3749 | 4 Axios, Oracle, Redhat and 1 more | 9 Axios, Goldengate, Acm and 6 more | 2024-08-03 | 7.5 High |
| axios is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2021-3649 | 1 Chatwoot | 1 Chatwoot | 2024-08-03 | 7.5 High |
| chatwoot is vulnerable to Inefficient Regular Expression Complexity | ||||
| CVE-2022-42969 | 1 Pytest | 1 Py | 2024-08-03 | 5.3 Medium |
| The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled. Note: This has been disputed by multiple third parties as not being reproduceable and they argue this is not a valid vulnerability. | ||||
| CVE-2022-44572 | 2 Rack Project, Redhat | 3 Rack, Satellite, Satellite Capsule | 2024-08-03 | 7.5 High |
| A denial of service vulnerability in the multipart parsing component of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1 and 3.0.0.1 could allow an attacker tocraft input that can cause RFC2183 multipart boundary parsing in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that parse multipart posts using Rack (virtually all Rails applications) are impacted. | ||||
| CVE-2022-44570 | 2 Rack Project, Redhat | 3 Rack, Satellite, Satellite Capsule | 2024-08-03 | 7.5 High |
| A denial of service vulnerability in the Range header parsing component of Rack >= 1.5.0. A Carefully crafted input can cause the Range header parsing component in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that deal with Range requests (such as streaming applications, or applications that serve files) may be impacted. | ||||
| CVE-2022-44571 | 2 Rack Project, Redhat | 3 Rack, Satellite, Satellite Capsule | 2024-08-03 | 7.5 High |
| There is a denial of service vulnerability in the Content-Disposition parsingcomponent of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1, 3.0.0.1. This could allow an attacker to craft an input that can cause Content-Disposition header parsing in Rackto take an unexpected amount of time, possibly resulting in a denial ofservice attack vector. This header is used typically used in multipartparsing. Any applications that parse multipart posts using Rack (virtuallyall Rails applications) are impacted. | ||||
| CVE-2022-42964 | 1 Pymatgen | 1 Pymatgen | 2024-08-03 | 5.9 Medium |
| An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the pymatgen PyPI package, when an attacker is able to supply arbitrary input to the GaussianInput.from_string method | ||||