A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary application, version 1.2.10. An attacker can exploit this vulnerability by maliciously manipulating regular expressions, which can significantly impact the response time of the application and potentially render it completely non-functional. Specifically, the vulnerability can be triggered by sending a specially crafted request to the application, leading to a denial of service where the application crashes.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: @huntr_ai
Published: 2024-06-01T15:54:36.486Z
Updated: 2024-08-01T20:33:52.524Z
Reserved: 2024-04-24T21:01:47.587Z
Link: CVE-2024-4148
Vulnrichment
Updated: 2024-08-01T20:33:52.524Z
NVD
Status : Awaiting Analysis
Published: 2024-06-01T16:15:07.563
Modified: 2024-06-03T14:46:24.250
Link: CVE-2024-4148
Redhat
No data.