Security Advisory

CVE-2021-43309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-24 15:48:36
Last updated 2024-08-04 03:55:29
Assigner JFROG
State PUBLISHED

Description

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the uri-template-lite npm package, when an attacker is able to supply arbitrary input to the "URI.expand" method