Security Advisory

CVE-2023-26117

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-30 05:00:01

Last updated 2025-11-03 19:28:07

Assigner snyk

State PUBLISHED

Description

Versions of the package angular from 1.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the $resource service due to the usage of an insecure regular expression. Exploiting this vulnerability is possible by a large carefully-crafted input, which can result in catastrophic backtracking.

← Browse all CVEs View on cve.org ↗