CVE-2021-29061 – This CVE describes a Regular Expression Denial ... (How to Fix)

Q: What is the severity of CVE-2021-29061?

CVE-2021-29061 has a CVSS score of 7.5 (HIGH). This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in vfsjfilechooser2 library versions 0.2.9 and below. Attackers can craft malicious URIs that cause excessive CPU consumption when validated, leading to application unresponsiveness. This affects any application using the vulnerable vfsjfilechooser2 component for file selection operations.

📋 TL;DR

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in vfsjfilechooser2 library versions 0.2.9 and below. Attackers can craft malicious URIs that cause excessive CPU consumption when validated, leading to application unresponsiveness. This affects any application using the vulnerable vfsjfilechooser2 component for file selection operations.

💻 Affected Systems

Products:

vfsjfilechooser2

Versions: 0.2.9 and below

Operating Systems: All platforms running Java applications

Default Config Vulnerable: ⚠️ Yes

Notes: Any Java application using vfsjfilechooser2 for file chooser functionality is vulnerable when processing URIs.

📦 What is this software?

Vfsjfilechooser2 by Vfsjfilechooser2 Project

View all CVEs affecting Vfsjfilechooser2 →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete denial of service causing application unavailability, potentially affecting dependent services and requiring system restart.

🟠

Likely Case

Degraded application performance or temporary unresponsiveness when processing malicious URIs.

🟢

If Mitigated

Minimal impact with proper input validation and updated library versions.

🌐 Internet-Facing: MEDIUM - Exploitable if application accepts URI inputs from external sources.

🏢 Internal Only: LOW - Requires user interaction or internal system access to trigger.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires ability to provide crafted URIs to the vulnerable component, typically through user input or API calls.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: vfsjfilechooser2-0.2.10 and above

Vendor Advisory: https://github.com/fracpete/vfsjfilechooser2/releases/tag/vfsjfilechooser2-0.2.10

Restart Required: Yes

Instructions:

1. Update vfsjfilechooser2 dependency to version 0.2.10 or higher. 2. Rebuild and redeploy affected applications. 3. Restart application services.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation to reject malformed URIs before they reach the vulnerable component.

Implement URI validation using whitelist patterns or length limits

Rate Limiting

all

Apply rate limiting to URI processing functions to prevent sustained DoS attacks.

Configure application-level rate limiting for file chooser operations

🧯 If You Can't Patch

Implement network segmentation to isolate vulnerable systems
Deploy WAF rules to block malicious URI patterns

🔍 How to Verify

Check if Vulnerable:

Check application dependencies for vfsjfilechooser2 version 0.2.9 or earlier.

Check Version:

Check Maven/Gradle dependencies or examine JAR manifest: java -jar vfsjfilechooser2.jar --version

Verify Fix Applied:

Confirm vfsjfilechooser2 version is 0.2.10 or higher in application dependencies.

📡 Detection & Monitoring

Log Indicators:

High CPU usage spikes
Application timeouts during file selection operations
Stack traces containing regex processing errors

Network Indicators:

Unusual patterns of URI requests to file chooser endpoints

SIEM Query:

source="application.logs" AND ("CPU spike" OR "timeout" OR "ReDoS") AND process="java"

📊 Metadata

CVE ID: CVE-2021-29061

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-770

Published: June 21, 2021

Last Updated: November 21, 2024

🔗 References

https://github.com/fracpete/vfsjfilechooser2/commit/9c9f2c317f3de5ece60a3ae28c371e9796e3909b Patch,Third Party Advisory
https://github.com/fracpete/vfsjfilechooser2/issues/7 Exploit,Issue Tracking,Third Party Advisory
https://github.com/fracpete/vfsjfilechooser2/releases/tag/vfsjfilechooser2-0.2.9 Release Notes,Third Party Advisory
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29061/Vfsjfilechooser2.md Exploit,Patch,Third Party Advisory
https://github.com/yetingli/SaveResults/blob/main/md/vfsjfilechooser2.md Exploit,Patch,Third Party Advisory
https://github.com/fracpete/vfsjfilechooser2/commit/9c9f2c317f3de5ece60a3ae28c371e9796e3909b Patch,Third Party Advisory
https://github.com/fracpete/vfsjfilechooser2/issues/7 Exploit,Issue Tracking,Third Party Advisory
https://github.com/fracpete/vfsjfilechooser2/releases/tag/vfsjfilechooser2-0.2.9 Release Notes,Third Party Advisory
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29061/Vfsjfilechooser2.md Exploit,Patch,Third Party Advisory
https://github.com/yetingli/SaveResults/blob/main/md/vfsjfilechooser2.md Exploit,Patch,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-29061, you might also want to check these: