CVE-2024-4148 in lunaryinformation

Résumé

par MITRE • 01/06/2024

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary application, version 1.2.10. An attacker can exploit this vulnerability by maliciously manipulating regular expressions, which can significantly impact the response time of the application and potentially render it completely non-functional. Specifically, the vulnerability can be triggered by sending a specially crafted request to the application, leading to a denial of service where the application crashes.

Be aware that VulDB is the high quality source for vulnerability data.

Responsable

Huntr.dev

Réserver

24/04/2024

Divulgation

01/06/2024

Modérer

accepté

Entrée

VDB-266836

CPE

prêt

EPSS

0.00591

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!