CWE-1333: CWE-1333

A regular expression complexity vulnerability in Zoom Workplace Clients allows unauthenticated attackers to potentially escalate privileges via networ...

Apollo Server's startStandaloneServer function is vulnerable to denial-of-service attacks when attackers send GraphQL requests with specially crafted ...

seroval library versions 1.4.0 and below contain vulnerabilities in RegExp serialization that can cause memory exhaustion or ReDoS (Regular Expression...

This CVE describes a regular expression denial of service (ReDoS) vulnerability in Anthropic's MCP TypeScript SDK. Attackers can exploit this by sendi...

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in Fedify's document loader. Attackers can cause catastrophic backtrac...

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in Valibot's emoji validation regex. Attackers can submit a short mali...

This CVE describes an Inefficient Regular Expression Complexity (ReDoS) vulnerability in Apache Traffic Control's Traffic Router management interface....

CVE-2025-33090 is a denial-of-service vulnerability in IBM Concert Software where a remote attacker can send specially crafted regular expressions tha...

CVE-2025-53539 is a denial-of-service vulnerability in FastAPI Guard's penetration detection system where inefficient regex patterns can cause polynom...

A Regular Expression Denial of Service (ReDoS) vulnerability in huggingface/transformers allows attackers to degrade application performance or cause ...

A Regular Expression Denial of Service (ReDoS) vulnerability in lunary-ai/lunary allows attackers to submit specially crafted inputs that cause the se...

A Regular Expression Denial of Service (ReDoS) vulnerability in lunary-ai/lunary allows attackers to cause indefinite server hangs by sending speciall...

This vulnerability in lunary-ai/lunary allows authenticated users to upload and execute arbitrary regular expressions on the server, potentially causi...

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the huggingface/transformers library's tokenization_nougat_fast.py file. The po...

The parse-duration library versions before 2.1.3 are vulnerable to denial of service attacks through CPU-bound operations and memory exhaustion. Attac...

Koa middleware for Node.js versions prior to 0.21.2, 1.7.1, 2.15.4, and 3.0.0-alpha.3 contain a regular expression denial-of-service (ReDoS) vulnerabi...

This vulnerability allows attackers to cause a denial of service (DoS) by submitting specially crafted email addresses during user registration in CTF...

This vulnerability in IBM Engineering Lifecycle Optimization - Publishing allows remote attackers to cause denial of service by sending specially craf...

CVE-2024-21539 is a Regular Expression Denial of Service (ReDoS) vulnerability in @eslint/plugin-kit versions before 0.2.3. Attackers can send special...

CVE-2024-49761 is a Regular Expression Denial of Service (ReDoS) vulnerability in REXML, Ruby's XML toolkit. It allows attackers to cause denial of se...

CVE-2020-26308 is a Regular Expression Denial of Service (ReDoS) vulnerability in validate.js library versions 0.13.1 and earlier. Attackers can craft...

CVE-2020-26311 is a Regular Expression Denial of Service (ReDoS) vulnerability in the useragent Node.js package. Attackers can cause denial of service...

Foundation front-end framework versions 6.3.3 and earlier contain vulnerable regular expressions that can be exploited for Regular Expression Denial o...

This vulnerability allows denial-of-service attacks against Znuny systems through specially crafted emails. Attackers can send emails containing HTML ...

This vulnerability in GitLab allows attackers to cause Denial of Service by sending a specific POST request to affected instances. All GitLab Communit...

CVE-2024-45296 is a denial-of-service vulnerability in the path-to-regexp library where certain path patterns generate inefficient regular expressions...

A denial-of-service vulnerability exists in the kjd/idna library's idna.encode() function where specially crafted input strings trigger quadratic comp...

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in kubeflow/kubeflow's email validation mechanism. Attackers can remot...

A Regular Expression Denial of Service (ReDoS) vulnerability in lunary-ai/lunary version 1.2.10 allows attackers to send specially crafted requests th...

CVE-2024-28716 is a remote code execution vulnerability in OpenStack Storlets yoga-eom's gateway.py component. It allows attackers to execute arbitrar...

CVE-2024-4056 is a denial-of-service vulnerability in M-Files Server that allows unauthenticated attackers to consume computing resources, potentially...

TCPDF versions up to 6.6.5 contain a ReDoS vulnerability in color parsing that allows attackers to cause denial of service by providing specially craf...

CVE-2024-28865 is a denial-of-service vulnerability in django-wiki where malicious article content can trigger a regular expression loop causing exces...

This vulnerability in URLite v3.1.0 allows attackers to cause denial of service (DoS) by sending specially crafted payloads to the URL parsing functio...

This CVE describes a regular expression denial of service (ReDoS) vulnerability in AngularJS versions 1.3.0 and above. Attackers can cause denial of s...

This vulnerability allows attackers to cause a denial of service (DoS) in Embedchain by sending specially crafted JSON data with long strings that tri...

Zod versions 3.21.0 through 3.22.3 contain a vulnerability where attackers can cause denial of service by sending specially crafted email addresses du...

MathJax versions up to 2.7.9 contain two regular expression denial-of-service (ReDoS) vulnerabilities in MathJax.js via the components pattern and mar...

This vulnerability allows attackers to cause a Denial of Service (DoS) in GitLab by sending specially crafted payloads to the preview_markdown endpoin...

This vulnerability allows attackers to cause denial of service (DoS) in GitLab by sending specially crafted payloads to the preview_markdown endpoint....

This vulnerability allows attackers to cause a Denial of Service (DoS) in GitLab by sending specially crafted payloads to the preview_markdown endpoin...

CVE-2023-32610 is a denial-of-service vulnerability in Mailform Pro CGI versions 4.3.1.2 and earlier that allows remote unauthenticated attackers to c...

The urlnorm crate through version 0.1.4 for Rust is vulnerable to Regular Expression Denial of Service (ReDos) via specially crafted URLs. This allows...

This vulnerability allows attackers to cause denial of service (DoS) in GitLab instances by sending specially crafted payloads to the preview_markdown...

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the sanitize_html function of the redcloth gem v4.0.0. Attackers can cause deni...

CVE-2023-32758 is a Regular Expression Denial of Service (ReDoS) vulnerability in giturlparse library versions through 1.2.2. When parsing maliciously...

This CVE describes a regular expression denial of service (ReDoS) vulnerability in Mozilla's bleach library when parsing style attributes. Attackers c...

The jQuery Validation Plugin versions before 1.19.5 contain a regular expression denial of service (ReDoS) vulnerability in the url2 method. Attackers...

Apache Tapestry versions up to 5.8.1 contain a Regular Expression Denial of Service (ReDoS) vulnerability in the ContentType class. Attackers could ca...