CVE-2021-45470

High

lib/DatabaseLayer.py in cve-search before 4.1.0 allows regular expression injection, which can lead to ReDoS (regular expression denial of…

mitre·CWE-1333·Published 2021-12-23

CVSS

7.5

EPSS

0.02

KEV

Exploits

cve.orgen

165 chars

lib/DatabaseLayer.py in cve-search before 4.1.0 allows regular expression injection, which can lead to ReDoS (regular expression denial of service) or other impacts.

NVDen

165 chars

lib/DatabaseLayer.py in cve-search before 4.1.0 allows regular expression injection, which can lead to ReDoS (regular expression denial of service) or other impacts.

El archivo lib/DatabaseLayer.py en cve-search versiones anteriores a 4.1.0, permite una inyección de expresiones regulares, que puede conllevar a ReDoS (denegación de servicio por expresiones regulares) u otros impactos

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H