Submeter #598875: codemirror codemirror5 <=5.17.0 Inefficient Regular Expression Complexityinformação

Título	codemirror codemirror5 <=5.17.0 Inefficient Regular Expression Complexity
Descrição	A ReDoS vulnerability has been identified in CodeMirror’s Markdown mode. Specially crafted input strings can trigger catastrophic backtracking in several regular expressions, causing the affected application to freeze or significantly degrade its performance. This vulnerability could be exploited in any environment (browser‐ or server‑side) that utilizes CodeMirror’s Markdown mode, leading to denial‑of‑service (DoS).
Fonte	⚠️ https://github.com/codemirror/codemirror5/issues/7128
Utilizador	DayShift (UID 80963)
Submissão	18/06/2025 08h39 (há 10 meses)
Moderação	22/06/2025 08h17 (4 days later)
Estado	Aceite
Entrada VulDB	313610 [CodeMirror até 5.65.20 Markdown Mode markdown.js Negação de Serviço]
Pontos	19

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!