Lucene search
Veracode Vulnerability DatabaseVERACODE:6053HistoryApr 05, 2018 - 5:41 a.m.
Regular Expression Denial Of Service (ReDoS)
2018-04-0505:41:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.002 Low
EPSS
Percentile
54.1%
sshpk is vulnerable to Regular expression Denial of Service (ReDoS). Due to weak regular expression choice used for public key, attackers are able to pass a malicious public key string , leading to a huge performance slow down .
Related
osv
osv
CVE-2018-3737
2018-06-07 02:29:08
Regular Expression Denial of Service in sshpk
2018-08-15 13:22:23
github
github
Regular Expression Denial of Service in sshpk
2018-08-15 13:22:23
nodejs
nodejs
Regular Expression Denial of Service
2018-04-24 22:25:08
cvelist
cvelist
CVE-2018-3737
2018-04-26 00:00:00
redhatcve
redhatcve
CVE-2018-3737
2020-02-03 02:35:41
ubuntucve
ubuntucve
CVE-2018-3737
2018-06-07 00:00:00
prion
prion
Code injection
2018-06-07 02:29:00
nvd
nvd
CVE-2018-3737
2018-06-07 02:29:08
debiancve
debiancve
CVE-2018-3737
2018-06-07 02:29:08
cve
cve
CVE-2018-3737
2018-06-07 02:29:08
ibm
ibm
redhat
redhat
(RHSA-2020:2625) Moderate: rh-nodejs8-nodejs security update
2020-06-18 21:46:51
nessus
nessus
RHEL 7 : rh-nodejs8-nodejs (RHSA-2020:2625)
2023-01-23 00:00:00