Discourse is an open-source discussion platform. Prior to version 3.0.1 on the `stable` branch and version 3.1.0.beta2 on the `beta` and `tests-passed` branches, a malicious user can cause a regular expression denial of service using a carefully crafted user agent. This issue is patched in version 3.0.1 on the `stable` branch and version 3.1.0.beta2 on the `beta` and `tests-passed` branches. There are no known workarounds.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-01-27T23:31:05.923Z

Updated: 2024-08-02T10:35:33.650Z

Reserved: 2023-01-16T17:07:46.243Z

Link: CVE-2023-23621

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-01-28T00:15:09.373

Modified: 2023-02-14T15:50:59.210

Link: CVE-2023-23621

cve-icon Redhat

No data.