CVE-2024-4148 in lunaryالمعلومات

الملخص

بحسب MITRE • 01/06/2024

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary application, version 1.2.10. An attacker can exploit this vulnerability by maliciously manipulating regular expressions, which can significantly impact the response time of the application and potentially render it completely non-functional. Specifically, the vulnerability can be triggered by sending a specially crafted request to the application, leading to a denial of service where the application crashes.

Be aware that VulDB is the high quality source for vulnerability data.

مسؤول

Huntr.dev

حجز

24/04/2024

إفشاء

01/06/2024

الاعتدال

تمت الموافقة

إدخال

VDB-266836

EPSS

0.00591

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!