EPSS
Percentile
36.8%
cleo is vulnerable to regular expression denial of service(ReDoS) attacks. A remote attacker is able to cause denial of service conditions via suppling a maliciously crafted input through the Table.set_rows method in command.py.
Table.set_rows
command.py
github.com/python-poetry/cleo/blob/bfcdd7213230d347ee4dcffadd255b7785adeb8a/src/cleo/commands/command.py#L206
research.jfrog.com/vulnerabilities/cleo-redos-xray-257186/