Lucene search
Veracode Vulnerability DatabaseVERACODE:29148HistoryJan 27, 2021 - 5:04 a.m.
Regular Expression Denial Of Service (ReDoS)
2021-01-2705:04:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
51.0%
ckeditor4 is vulnerable to regular expression denial of service. An insecure usage of the regular expression allows an attacker to crash the user’s browser through excessive memory consumption by tricking a user into pasting a malicious text into the Styles input in the Advanced Tab for Dialogs plugin.
Related
nvd
nvd
CVE-2021-26271
2021-01-26 21:15:12
osv
osv
CVE-2021-26271
2021-01-26 21:15:12
CKEditor 4 ReDoS Vulnerability
2022-05-24 17:40:21
cve
cve
CVE-2021-26271
2021-01-26 21:15:12
cvelist
cvelist
CVE-2021-26271
2021-01-26 20:39:46
github
github
CKEditor 4 ReDoS Vulnerability
2022-05-24 17:40:21
prion
prion
Design/Logic Flaw
2021-01-26 21:15:00
debiancve
debiancve
CVE-2021-26271
2021-01-26 21:15:12
ubuntucve
ubuntucve
CVE-2021-26271
2021-01-26 00:00:00
openvas
openvas
CKEditor 4.0 < 4.16 Multiple ReDoS Vulnerabilities - Linux
2021-01-28 00:00:00
CKEditor 4.0 < 4.16 Multiple ReDoS Vulnerabilities - Windows
2021-01-28 00:00:00
ibm
ibm
Security Bulletin: IBM Sterling Global Mailbox is vulnerable to denial of service due to CKeditor WYSIWYG editor (CVE-2021-26271, CVE-2021-26272)
2022-02-22 14:31:15
nessus
nessus
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00