Lucene search
@huntrdevCVELIST:CVE-2021-3807HistorySep 17, 2021 - 12:00 a.m.
CVE-2021-3807 Inefficient Regular Expression Complexity in chalk/ansi-regex
2021-09-1700:00:00
CWE-1333
@huntrdev
www.cve.org
7
vulnerability
ansi-regex
inefficient
regular expression
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
8.8
Confidence
High
EPSS
0.004
Percentile
73.6%
ansi-regex is vulnerable to Inefficient Regular Expression Complexity
CNA Affected
[
{
"vendor": "chalk",
"product": "chalk/ansi-regex",
"versions": [
{
"version": "unspecified",
"lessThan": "6.0.1",
"status": "affected",
"versionType": "custom"
},
{
"version": "unspecified",
"lessThan": "5.0.1",
"status": "affected",
"versionType": "custom"
},
{
"version": "5.0.1",
"status": "unaffected"
}
]
}
]Related
ibm
ibm
debiancve
debiancve
CVE-2021-3807
2021-09-17 07:15:09
cve
cve
CVE-2021-3807
2021-09-17 07:15:09
ubuntucve
ubuntucve
CVE-2021-3807
2021-09-17 00:00:00
prion
prion
Design/Logic Flaw
2021-09-17 07:15:00
hackerone
hackerone
osv
osv
CGA-pgv4-jr4j-qh5w
2024-06-06 12:28:45
CVE-2021-3807
2021-09-17 07:15:09
Inefficient Regular Expression Complexity in chalk/ansi-regex
2021-09-20 20:20:09
nvd
nvd
CVE-2021-3807
2021-09-17 07:15:09
cgr
cgr
CVE-2021-3807 vulnerabilities
2024-05-19 03:07:16
huntr
huntr
Inefficient Regular Expression Complexity in chalk/ansi-regex
2021-09-09 11:25:39
redhatcve
redhatcve
CVE-2021-3807
2021-09-24 09:25:36
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-09-20 10:48:13
github
github
Inefficient Regular Expression Complexity in chalk/ansi-regex
2021-09-20 20:20:09
openvas
openvas
OTRS Multiple Vulnerabilities (OSA-2022-04)
2022-10-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0531-1)
2022-02-22 00:00:00
openSUSE: Security Advisory for nodejs12 (openSUSE-SU-2022:0657-1)
2022-03-03 00:00:00
nessus
nessus
RHEL 8 : ceph (Unpatched Vulnerability)
2024-07-11 00:00:00
CentOS 9 : nodejs-nodemon-2.0.19-1.el9
2024-02-29 00:00:00
SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2022:0704-1)
2022-03-05 00:00:00
suse
suse
Security update for nodejs8 (important)
2022-03-04 00:00:00
Security update for nodejs14 (important)
2022-03-04 00:00:00
Security update for nodejs12 (important)
2022-03-02 00:00:00
oraclelinux
oraclelinux
nodejs:16 security and bug fix update
2022-09-15 00:00:00
nodejs:16 security, bug fix, and enhancement update
2021-12-16 00:00:00
nodejs:14 security, bug fix, and enhancement update
2022-02-02 00:00:00
redhat
redhat
rocky
rocky
nodejs:16 security and bug fix update
2022-09-13 07:36:52
nodejs:16 security, bug fix, and enhancement update
2021-12-15 19:09:29
nodejs:14 security, bug fix, and enhancement update
2022-02-01 20:08:39
almalinux
almalinux
Moderate: nodejs:16 security, bug fix, and enhancement update
2021-12-15 19:09:29
Moderate: nodejs:14 security, bug fix, and enhancement update
2022-02-01 20:08:39
Moderate: nodejs and nodejs-nodemon security and bug fix update
2022-09-20 00:00:00
redos
redos
ROS-20240704-07
2024-07-04 00:00:00
ROS-20240403-01
2024-04-03 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
8.8
Confidence
High
EPSS
0.004
Percentile
73.6%
Related for CVELIST:CVE-2021-3807