Lucene search
GoogleOSV:CVE-2021-29469HistoryApr 23, 2021 - 6:15 p.m.
CVE-2021-29469
2021-04-2318:15:08
Google
osv.dev
4
0.002 Low
EPSS
Percentile
55.4%
Node-redis is a Node.js Redis client. Before version 3.1.1, when a client is in monitoring mode, the regex begin used to detected monitor messages could cause exponential backtracking on some strings. This issue could lead to a denial of service. The issue is patched in version 3.1.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| node-redis | eq | 0.3.7 | |
| node-redis | eq | .2.4.0 | |
| node-redis | eq | 3.0.0 | |
| node-redis | eq | .2.4.2 | |
| node-redis | eq | 0.5.11 | |
| node-redis | eq | 0.5.1 | |
| node-redis | eq | 0.8.5 | |
| node-redis | eq | 0.9.0 | |
| node-redis | eq | .2.5.3 | |
| node-redis | eq | .2.7.0 |
Related
prion
prion
Code injection
2021-04-23 18:15:00
ubuntucve
ubuntucve
CVE-2021-29469
2021-04-23 00:00:00
osv
osv
Node-Redis potential exponential regex in monitor mode
2021-04-27 15:56:03
github
github
Node-Redis potential exponential regex in monitor mode
2021-04-27 15:56:03
cvelist
cvelist
CVE-2021-29469 Potential exponential regex in monitor mode
2021-04-23 18:10:15
nodejs
nodejs
Regular Expression Denial of Service
2021-05-04 03:47:22
nvd
nvd
CVE-2021-29469
2021-04-23 18:15:08
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-04-26 09:56:09
cve
cve
CVE-2021-29469
2021-04-23 18:15:08
debiancve
debiancve
CVE-2021-29469
2021-04-23 18:15:08
