RSS   Podatności dla 'SSRI'   RSS

2021-03-12
 
CVE-2021-27290

NVD-CWE-Other
 

 
ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.

 


Copyright 2021, cxsecurity.com

 

Back to Top