CVE-2021-4437 | dbartholomae lambda-middleware frameguard up to 1.0.4 JSON Mime-Type JsonDeserializer.ts redos (ID 57)

A vulnerability, which was classified as problematic, has been found in dbartholomae lambda-middleware frameguard up to 1.0.4. Affected by this issue is some unknown functionality of the file packages/json-deserializer/src/JsonDeserializer.ts of the component JSON Mime-Type Handler. The manipulation leads to inefficient regular expression complexity.

This vulnerability is handled as CVE-2021-4437. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2021-4437 | dbartholomae lambda-middleware frameguard up to 1.0.4 JSON Mime-Type JsonDeserializer.ts redos (ID 57)

Post correlati

CVE-2023-46156 | Siemens SIMATIC Drive Controller CPU 1504D TF Packets use after free (ssa-280603)

CVE-2024-5915 | Palo Alto GlobalProtect App prior 6.1.5/6.2.4/6.3.1 on Windows permission assignment

CVE-2024-5630 | Articulate Insert or Embed Articulate Content into WordPress Plugin unrestricted upload

CVE-2024-4936 | Canto Plugin up to 3.0.8 on WordPress file inclusion