Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:29967
HistoryApr 13, 2021 - 2:43 a.m.

Denial Of Service (DoS)

2021-04-1302:43:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
chrono-node
denial of service
vulnerability
regex matching
parsetimeunits
embedded spaces

EPSS

0.002

Percentile

59.2%

JSON

chrono-node is vulnerable to denial of service (DoS). The vulnerability exists due to catastrophic backtracking in the regex matching, due to embedded spaces in the parseTimeUnits function.

Related

nodejs 1
cvelist 1
osv 2
prion 1
github 1
cve 1
nvd 1
nodejs
nodejs
Denial of Service
2021-05-06 16:14:25
cvelist
cvelist
CVE-2021-23371 Regular Expression Denial of Service (ReDoS)
2021-04-12 13:10:15
osv
osv
CVE-2021-23371
2021-04-12 13:15:13
Denial of service in chrono-node
2021-05-06 15:58:05
prion
prion
Design/Logic Flaw
2021-04-12 13:15:00
github
github
Denial of service in chrono-node
2021-05-06 15:58:05
cve
cve
CVE-2021-23371
2021-04-12 13:15:13
nvd
nvd
CVE-2021-23371
2021-04-12 13:15:13

EPSS

0.002

Percentile

59.2%

JSON
Related for VERACODE:29967
nodejs1cvelist1osv2prion1github1cve1nvd1