Lucene search
Veracode Vulnerability DatabaseVERACODE:31017HistoryJun 22, 2021 - 2:31 a.m.
Regular Expression Denial Of Service (ReDoS)
2021-06-2202:31:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.002 Low
EPSS
Percentile
60.3%
color-string is vulnerable to regular expression denial of service. An attacker parsing a malicious crafted string that consist of more than 5000 characters into the hwb() or hsl() function will cause the system to crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| color-string | le | 1.5.4 | |
| node-color-string:sid | eq | 1.5.4-1 | |
| node-color-string:sid | eq | 1.5.3-1 | |
| node-color-string:bullseye | eq | 1.5.3-1 |
Related
ubuntucve
ubuntucve
CVE-2021-29060
2021-06-21 00:00:00
prion
prion
Design/Logic Flaw
2021-06-21 16:15:00
ibm
ibm
nvd
nvd
CVE-2021-29060
2021-06-21 16:15:08
cvelist
cvelist
CVE-2021-29060
2021-06-21 15:45:53
osv
osv
Regular Expression Denial of Service (ReDOS)
2021-06-22 01:14:09
CVE-2021-29060
2021-06-21 16:15:08
redhatcve
redhatcve
CVE-2021-29060
2021-06-22 16:29:25
github
github
Regular Expression Denial of Service (ReDOS)
2021-06-22 01:14:09
debiancve
debiancve
CVE-2021-29060
2021-06-21 16:15:08
cve
cve
CVE-2021-29060
2021-06-21 16:15:08
nessus
nessus
Splunk Enterprise < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0613)
2024-05-02 00:00:00