Описание
A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular Expression Denial of Service (ReDoS) by manipulating regular expressions. This can significantly slow down the application's response time and potentially render it completely unusable.
EPSS
Процентиль: 28%
0.00099
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333
Связанные уязвимости
CVSS3: 7.5
github
11 месяцев назад
A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular Expression Denial of Service (ReDoS) by manipulating regular expressions. This can significantly slow down the application's response time and potentially render it completely unusable.
EPSS
Процентиль: 28%
0.00099
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333