CWE-1333

High likelihood

Inefficient Regular Expression Complexity

Parent: CWE-407 - Inefficient Algorithmic Complexity

The product uses a regular expression with a worst-case computational complexity that is inefficient and possibly exponential.

426 vulnerabilities with CWE-1333
CVE-2021-40895 HIGH
todo-regex 0.1.1 - Regular Expression Denial of Service via Crafted TODO Statements
CVSS 7.5
CVE-2021-40894 HIGH
underscore-99xp 1.7.2 - Denial of Service via Inefficient Regular Expression in deepValueSearch
CVSS 7.5
CVE-2021-40893 HIGH
validate_data 0.1.1 - Regular Expression Denial of Service via Email Validation
CVSS 7.5
CVE-2021-40892 HIGH
validate-color 2.1.0 - Regular Expression Denial of Service via Crafted RGB(A) Strings
CVSS 7.5
CVE-2021-46823 MEDIUM
python-ldap < 3.4.0 - Denial of Service via LDAP Schema Parser ReDoS
CVSS 6.5
CVE-2021-40660 HIGH
Delight Nashorn Sandbox <0.2.0 - DoS
CVSS 7.5
CVE-2021-43308 MEDIUM
markdown-link-extractor < 3.0.2 - Regular Expression Denial of Service via Exponential ReDoS
CVSS 5.9
CVE-2021-43307 MEDIUM
semver-regex < 3.1.4 - Regular Expression Denial of Service via test() Method
CVSS 5.9
CVE-2021-43306 MEDIUM
jquery-validation < 1.19.4 - Regular Expression Denial of Service via url2 Method
CVSS 5.9
CVE-2021-3842 HIGH
nltk < 3.6.6 - Inefficient Regular Expression Complexity
CVSS 7.5
CVE-2021-41817 HIGH
ruby-lang/date < 2.0.1 - Regular Expression Denial of Service via Date.parse
CVSS 7.5
CVE-2021-23490 HIGH
parse-link-header < 2.0.0 - Denial of Service via Regular Expression in checkHeader
CVSS 7.5
CVE-2021-45470 HIGH
circl/cve-search < 4.1.0 - Regular Expression Injection in DatabaseLayer.py
CVSS 7.5
CVE-2021-43843 MEDIUM
jsx-slack < 4.5.2 - Regular Expression Denial of Service via Blockquote Multibyte Character Handling
CVSS 5.3
CVE-2021-43838 MEDIUM
jsx-slack < 4.5.1 - Regular Expression Denial-of-Service via Blockquote Tag
CVSS 5.3
CVE-2021-39940 MEDIUM
GitLab 13.2-14.3.5, 14.4-14.4.3, 14.5-14.5.1 - Regular Expression Denial of Service in Maven Package Registry
CVSS 4.3
CVE-2021-39933 MEDIUM
GitLab 12.10-14.3.5, 14.4-14.4.3, 14.5-14.5.1 - Denial of Service via Inefficient Regular Expression
CVSS 4.3
CVE-2021-43805 HIGH
Solidus <3.1.4, <3.0.4, <2.11.13 - DoS
CVSS 7.5
CVE-2021-3765 HIGH
validator.js - Inefficient Regular Expression Complexity
CVSS 7.5
CVE-2021-41115 MEDIUM
zulip < 4.7 - Denial of Service via Linkifier Regular Expression Complexity
CVSS 4.3
CVE-2021-23446 HIGH
handsontable < 10.0.0 - Regular Expression Denial of Service in isNumeric Helper Function
CVSS 7.5
CVE-2021-3828 HIGH
nltk - Inefficient Regular Expression Complexity
CVSS 7.5
CVE-2021-3822 HIGH
jsoneditor < 9.5.6 - Denial of Service via Inefficient Regular Expression
CVSS 7.5
CVE-2021-3820 HIGH
inflect < 0.3.7 - Inefficient Regular Expression Complexity
CVSS 7.5
CVE-2021-3810 HIGH
code-server < 3.12.0 - Denial of Service via Inefficient Regular Expression Complexity
CVSS 7.5
Details
Vulnerabilities 426
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits