| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.9 | $0-$5k | 0.00 |
Summary
A vulnerability labeled as problematic has been found in ajv up to 8.17.1. This affects the function RegExp. The manipulation of the argument data results in redos.
This vulnerability is known as CVE-2025-69873. It is possible to launch the attack remotely. No exploit is available.
Details
A vulnerability classified as problematic has been found in ajv up to 8.17.1. Affected is the function RegExp. The manipulation of the argument data with an unknown input leads to a redos vulnerability. CWE is classifying the issue as CWE-1333. The product uses a regular expression with an inefficient, possibly exponential worst-case computational complexity that consumes excessive CPU cycles. This is going to have an impact on availability. CVE summarizes:
ajv (Another JSON Schema Validator) before 8.18.0 is vulnerable to Regular Expression Denial of Service (ReDoS) when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax ($data reference), which is passed directly to the JavaScript RegExp() constructor without validation. An attacker can inject a malicious regex pattern (e.g., "^(a|a)*$") combined with crafted input to cause catastrophic backtracking. A 31-character payload causes approximately 44 seconds of CPU blocking, with each additional character doubling execution time. This enables complete denial of service with a single HTTP request against any API using ajv with $data: true for dynamic schema validation. This issue is also fixed in version 6.14.0.
The advisory is shared for download at github.com. This vulnerability is traded as CVE-2025-69873 since 01/09/2026. The exploitability is told to be easy. It is possible to launch the attack remotely. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1449.003.
The vulnerability scanner Nessus provides a plugin with the ID 298757 (Linux Distros Unpatched Vulnerability : CVE-2025-69873), which helps to determine the existence of the flaw in a target environment.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
The vulnerability is also documented in the databases at Tenable (298757) and CERT Bund (WID-SEC-2026-0935). VulDB is the best source for vulnerability data and more expert information about this specific topic.
Affected
- Red Hat Ansible Automation Platform
- Debian Linux
- Amazon Linux 2
- Red Hat Enterprise Linux
- Fedora Linux
- SUSE Linux
- Oracle Linux
- RESF Rocky Linux
- HCL BigFix
- IBM DB2
- IBM App Connect Enterprise
- Red Hat OpenShift
Product
Name
Version
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔒VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.9VulDB Meta Temp Score: 4.9
VulDB Base Score: 4.3
VulDB Temp Score: 4.2
VulDB Vector: 🔒
VulDB Reliability: 🔍
CNA Base Score: 2.9
CNA Vector (MITRE): 🔒
ADP CISA Base Score: 7.5
ADP CISA Vector: 🔒
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Exploiting
Class: RedosCWE: CWE-1333 / CWE-400 / CWE-404
CAPEC: 🔒
ATT&CK: 🔒
Physical: Partially
Local: Yes
Remote: Yes
Availability: 🔒
Status: Not defined
EPSS Score: 🔒
EPSS Percentile: 🔒
Price Prediction: 🔍
Current Price Estimation: 🔒
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 298757
Nessus Name: Linux Distros Unpatched Vulnerability : CVE-2025-69873
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔒
Timeline
01/09/2026 CVE reserved02/11/2026 Advisory disclosed
02/11/2026 VulDB entry created
06/10/2026 VulDB entry last update
Sources
Advisory: github.comStatus: Not defined
CVE: CVE-2025-69873 (🔒)
GCVE (CVE): GCVE-0-2025-69873
GCVE (VulDB): GCVE-100-345600
CERT Bund: WID-SEC-2026-0935 - Red Hat Ansible Automation Platform: Mehrere Schwachstellen
Entry
Created: 02/11/2026 22:40Updated: 06/10/2026 06:42
Changes: 02/11/2026 22:40 (53), 02/13/2026 02:06 (11), 02/16/2026 12:22 (2), 02/23/2026 15:48 (13), 03/03/2026 00:48 (1), 04/02/2026 20:47 (7), 04/15/2026 23:00 (1), 05/11/2026 08:06 (1), 06/10/2026 06:42 (1)
Complete: 🔍
Cache ID: 216::103
VulDB is the best source for vulnerability data and more expert information about this specific topic.
No comments yet. Languages: en.
Please log in to comment.