Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-26103
HistoryFeb 25, 2023 - 5:15 a.m.

Design/Logic Flaw

2023-02-2505:15:00
PRIOn knowledge base
www.prio-n.com
2
deno package
redos
upgradewebsocket function
regular expression denial of service
nvd
web socket server

0.001 Low

EPSS

Percentile

48.1%

JSON

Versions of the package deno before 1.31.0 are vulnerable to Regular Expression Denial of Service (ReDoS) due to the upgradeWebSocket function, which contains regexes in the form of /s*,s*/, used for splitting the Connection/Upgrade header. A specially crafted Connection/Upgrade header can be used to significantly slow down a web socket server.

CPENameOperatorVersion
denolt1.31.0

Related

osv 3
nvd 1
cvelist 1
github 1
cve 1
wallarmlab 1
osv
osv
Deno vulnerable to Regular Expression Denial of Service
2023-02-25 06:30:21
CVE-2023-26103
2023-02-25 05:15:12
Regular Expression Denial of Service in Deno.upgradeWebSocket API
2023-04-03 17:18:51
nvd
nvd
CVE-2023-26103
2023-02-25 05:15:12
cvelist
cvelist
CVE-2023-26103
2023-02-25 05:00:01
github
github
Regular Expression Denial of Service in Deno.upgradeWebSocket API
2023-04-03 17:18:51
cve
cve
CVE-2023-26103
2023-02-25 05:15:12
wallarmlab
wallarmlab
ChatGPT: Friend or Foe? | API Security Newsletter
2023-05-16 13:58:20

0.001 Low

EPSS

Percentile

48.1%

JSON
Related for PRION:CVE-2023-26103
osv3nvd1cvelist1github1cve1wallarmlab1