Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:29928
HistoryApr 07, 2021 - 6:21 a.m.

Regular Expression Denial Of Service (ReDoS)

2021-04-0706:21:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
regular expression denial of service
ckeditor5
parse.js
vulnerability
html code
exploit
system crash

EPSS

0.005

Percentile

76.0%

ckeditor5 is vulnerable to regular expression denial of service. An attacker is able to exploit the vulnerability and crash the system by submitting a malicious html code via the parse.js function.

EPSS

0.005

Percentile

76.0%