CVE-2024-45296 | pillarjs path-to-regexp up to 0.1.9 redos (GHSA-9wv6-86v2-598j)

Posted by Angelo Barbosa | Sep 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in pillarjs path-to-regexp up to 0.1.9. This affects an unknown part. The manipulation leads to inefficient regular expression complexity.

This vulnerability is uniquely identified as CVE-2024-45296. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45296 | pillarjs path-to-regexp up to 0.1.9 redos (GHSA-9wv6-86v2-598j)

Related Posts

CVE-2023-40114 | Google Android 11/12/12L/13/14 MtpFfsHandle.cpp out-of-bounds write

CVE-2024-34060 | dfir-iris iris-evtx-module prior 1.0.0 Filename path traversal (GHSA-9rw6-5q9j-82fm)

CVE-2022-4962 | Apollo 2.0.0/2.0.1 Configuration Center /users improper authorization (Issue 4684)

CVE-2024-39906 | havenweb haven IndieAuth injection (GHSA-65cm-7g24-hm9f / c52f07c)