Lucene search
Redhat.comRH:CVE-2023-46402HistoryNov 18, 2023 - 6:49 p.m.
CVE-2023-46402
2023-11-1818:49:52
redhat.com
access.redhat.com
16
flaw
git-urls
package
long input
directory path
loading delays
regex
dos
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
17.1%
A flaw was found in the git-urls package. This issue occurs when a long input is provided inside the directory path of the git url. This could lead to loading delays or a regular expression denial of service.
Related
cgr
cgr
CVE-2023-46402 vulnerabilities
2024-05-19 03:07:16
prion
prion
Code injection
2023-11-18 00:15:00
cve
cve
CVE-2023-46402
2023-11-18 00:15:07
github
github
Inefficient Regular Expression Complexity in git-urls
2023-11-18 00:30:17
osv
osv
Inefficient Regular Expression Complexity in git-urls
2023-11-18 00:30:17
nvd
nvd
CVE-2023-46402
2023-11-18 00:15:07
cvelist
cvelist
CVE-2023-46402
2023-11-17 00:00:00
wolfi
wolfi
CVE-2023-46402 vulnerabilities
2024-07-01 09:08:36
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
17.1%
Related for RH:CVE-2023-46402