CVE-2024-27088 | medikoo es5-ext up to 0.10.62 function#copy/function#toStringTokens redos (ID 201)

Posted by Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in medikoo es5-ext up to 0.10.62. Affected by this issue is the function function#copy/function#toStringTokens. The manipulation leads to inefficient regular expression complexity.

This vulnerability is handled as CVE-2024-27088. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27088 | medikoo es5-ext up to 0.10.62 function#copy/function#toStringTokens redos (ID 201)

Related Posts

CVE-2024-7920 | Anhui Deshun Intelligent Technology Jieshun JieLink+ JSOTC2016 up to 20240805 GetParkInThroughDeivces access control

CVE-2024-4284 | mintplex-labs anything-llm up to 0.x id resource consumption

CVE-2024-6776 | Google Chrome up to 126.0.6478.126 Audio use after free (ID 346692)

CVE-2024-3645 | Essential Addons for Elementor Pro Plugin up to 5.8.11 on WordPress title_html_tag cross site scripting