CWE-1333

High likelihood

Inefficient Regular Expression Complexity

Parent: CWE-407 - Inefficient Algorithmic Complexity

The product uses a regular expression with a worst-case computational complexity that is inefficient and possibly exponential.

426 vulnerabilities with CWE-1333
CVE-2025-55152 MEDIUM
oak < 17.1.6 - Denial of Service via Inefficient Regular Expression in Header Parsing
CVSS 5.3
CVE-2025-5197 MEDIUM
Hugging Face Transformers < 4.53.0 - Regular Expression Denial of Service in convert_tf_weight_name_to_pt_weight_name
CVSS 5.3
CVE-2025-54796 HIGH
copyparty < 1.18.9 - Denial of Service via Filter Parameter Regular Expression
CVSS 7.5
CVE-2025-8262 MEDIUM
yarnpkg Yarn <1.22.22 - Info Disclosure
CVSS 4.3
CVE-2025-6998 HIGH
Pypi Calibreweb - Denial of Service
CVE-2025-54365 HIGH
fastapi-guard 3.0.1 - Regular Expression Denial of Service via Script Tag Attribute Bypass
CVSS 7.5
CVE-2025-7579 MEDIUM
chinese-poetry 0.1 - Info Disclosure
CVSS 4.3
CVE-2025-3933 MEDIUM
Hugging Face Transformers <4.50.3 - DoS
CVSS 5.3
CVE-2025-53539 HIGH
FastAPI Guard <3.0.1 - Buffer Overflow
CVSS 7.5
CVE-2025-3264 MEDIUM
Hugging Face Transformers <4.51.0 - DoS
CVSS 5.3
CVE-2025-3263 MEDIUM
Hugging Face Transformers <4.51.0 - DoS
CVSS 5.3
CVE-2025-3262 HIGH
huggingface/transformers <4.49.0 - DoS
CVSS 7.5
CVE-2025-7074 MEDIUM
Vercel Hyper <3.4.1 - Info Disclosure
CVSS 4.3
CVE-2025-45143 HIGH
string-math 1.2.2 - Denial of Service via Regex Input
CVSS 7.0
CVE-2025-43880 MEDIUM
GROWI < 7.1.6 - Authenticated Denial of Service via Inefficient Regular Expression
CVSS 4.3
CVE-2025-6493 MEDIUM
CodeMirror <= 5.65.20 - Inefficient Regular Expression Complexity in Markdown Mode
CVSS 5.3
CVE-2025-6492 MEDIUM
MarkText <= 0.17.1 - Inefficient Regular Expression Complexity in getRecommendTitleFromMarkdownString
CVSS 5.3
CVE-2025-48059 LOW
PowSyBl powsybl-iidm-criteria 6.3.0-6.7.1 - Regular Expression Denial of Service via RegexCriterion Pattern Compilation
CVE-2025-48058 MEDIUM
PowSyBl < 6.7.2 - Denial of Service via Inefficient Regular Expression in DataSource Mechanism
CVE-2025-6069 MEDIUM
CPython < 3.9.24, 3.10.0-3.10.18, 3.11.0-3.11.13, 3.12.0-3.12.11, 3.13.0-3.13.5, 3.14.0a1-3.14.0b2 - DoS via HTML Parser
CVSS 4.3
CVE-2025-5897 MEDIUM
Vuejs vue-cli <5.0.8 - Info Disclosure
CVSS 4.3
CVE-2025-5896 MEDIUM
tarojs taro <4.1.1 - Info Disclosure
CVSS 4.3
CVE-2025-5895 MEDIUM
Metabase 54.10 - Denial of Service via Inefficient Regular Expression in parseDataUri
CVSS 4.3
CVE-2025-5892 MEDIUM
RocketChat <7.6.1 - Info Disclosure
CVSS 4.3
CVE-2025-5891 MEDIUM
Unitech pm2 <6.0.6 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 426
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits