CVE-2024-39249 | Async up to 2.6.4/3.2.5 autoinject redos

Posted by Angelo Barbosa | Jul 1, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Async up to 2.6.4/3.2.5. Affected is the function autoinject. The manipulation leads to inefficient regular expression complexity.

This vulnerability is traded as CVE-2024-39249. The attack can only be done within the local network. There is no exploit available.

CVE-2024-39249 | Async up to 2.6.4/3.2.5 autoinject redos

Related Posts

CVE-2024-1230 | SimpleShop Plugin up to 2.10.0 on WordPress cross-site request forgery

CVE-2024-25065 | Apache OFBiz up to 18.12.11 path traversal

CVE-2024-8208 | nafisulbari/itsourcecode Insurance Management System 1.0 editClient.php AGENT ID cross site scripting

CVE-2024-2406 | Gacjie Server up to 1.0 Upload.php index file unrestricted upload