Lucene search
Veracode Vulnerability DatabaseVERACODE:32790HistoryNov 03, 2021 - 2:16 a.m.
Regular Expression Denial Of Service (ReDoS)
2021-11-0302:16:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
redos vulnerability
software
regex escape
EPSS
0.001
Percentile
46.0%
validator is vulnerable to regular expression denial of service (ReDoS). An attacker is able to slow down the application or causes an application crash via a malicious string and regex /(\s)+$/g via the rtrim function due to lack of safer regular expression to escape the string input from attacker.
Related
ubuntucve
ubuntucve
CVE-2021-3765
2021-11-02 00:00:00
redhatcve
redhatcve
CVE-2021-3765
2022-09-13 09:13:24
cve
cve
CVE-2021-3765
2021-11-02 07:15:07
prion
prion
Design/Logic Flaw
2021-11-02 07:15:00
osv
osv
Inefficient Regular Expression Complexity in Validator.js
2021-11-19 20:14:23
Inefficient Regular Expression Complexity in validator.js
2021-11-03 17:34:45
CVE-2021-3765
2021-11-02 07:15:07
github
github
Inefficient Regular Expression Complexity in validator.js
2021-11-03 17:34:45
cvelist
cvelist
nvd
nvd
CVE-2021-3765
2021-11-02 07:15:07
huntr
huntr
Inefficient Regular Expression Complexity in validatorjs/validator.js
2021-09-21 08:41:23
debiancve
debiancve
CVE-2021-3765
2021-11-02 07:15:00
ibm
ibm
Security Bulletin: Validator as used by IBM QRadar Assistant app for IBM QRadar SIEM is vulnerable to denial of service (CVE-2021-3765)
2023-04-04 19:45:41
redhat
redhat