Lucene search
Veracode Vulnerability DatabaseVERACODE:35350HistoryMay 04, 2022 - 7:23 a.m.
Regular Expression Denial Of Service (ReDoS)
2022-05-0407:23:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1657
0.011 Low
EPSS
Percentile
84.8%
angular is vulnerable to regular expression denial of service. An attacker can crash the application by providing a very high value of custom locale rule through the posPre attribute in the parsePattern function of parser.js.
References
github.com/advisories/GHSA-m2h2-264f-f486
lists.fedoraproject.org/archives/list/[email protected]/message/2WUSPYOTOMAZPDEFPWPSCSPMNODRDKK3/
lists.fedoraproject.org/archives/list/[email protected]/message/7LNAKCNTVBIHWAUT3FKWV5N67PQXSZOO/
security.netapp.com/advisory/ntap-20220629-0009/
stackblitz.com/edit/angularjs-material-blank-zvtdvb
Related
ubuntucve
ubuntucve
CVE-2022-25844
2022-05-01 00:00:00
osv
osv
angular vulnerable to regular expression denial of service (ReDoS)
2022-05-03 00:00:44
CVE-2022-25844
2022-05-01 16:15:08
ibm
ibm
fedora
fedora
[SECURITY] Fedora 35 Update: glances-3.3.0.1-2.fc35
2022-10-28 11:45:51
[SECURITY] Fedora 36 Update: glances-3.3.0.1-2.fc36
2022-10-28 11:16:24
prion
prion
Code injection
2022-05-01 16:15:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0215)
2023-07-10 00:00:00
nessus
nessus
Fedora 35 : glances (2022-edf635cf39)
2022-12-22 00:00:00
Fedora 36 : glances (2022-e016e6f445)
2022-12-23 00:00:00
nvd
nvd
CVE-2022-25844
2022-05-01 16:15:08
mageia
mageia
Updated glances packages fix security vulnerability
2023-07-07 08:54:45
cvelist
cvelist
CVE-2022-25844 Regular Expression Denial of Service (ReDoS)
2022-05-01 00:00:00
cve
cve
CVE-2022-25844
2022-05-01 16:15:08
redhatcve
redhatcve
CVE-2022-25844
2022-05-02 12:58:23
debiancve
debiancve
CVE-2022-25844
2022-05-01 16:15:08
github
github
angular vulnerable to regular expression denial of service (ReDoS)
2022-05-03 00:00:44