Regular Expression Denial Of Service (ReDoS)

2021-04-2005:30:11

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

45.6%

JSON

vaadin-text-field-flow is vulnerable to regular expression denial of service. Unsafe validation RegEx in EmailField allows an attacker to cause excessive CPU usage which could lead to a denial of service condition.

CPENameOperatorVersion
vaadin text fieldle18.0.7

CPE	Name	Operator	Version
	vaadin text field	le	18.0.7

References

github.com/vaadin/flow-components/pull/442

vaadin.com/security/2021-03-11

vaadin.com/security/cve-2021-31405

0.001 Low

EPSS

Percentile

45.6%

JSON

Related for VERACODE:30043