Описание
Uptime Kuma >== 1.23.0 has a ReDoS vulnerability, specifically when an administrator creates a notification through the web service. If a string is provided it triggers catastrophic backtracking in the regular expression, leading to a ReDoS attack.
EPSS
Процентиль: 12%
0.00039
Низкий
6 Medium
CVSS3
Дефекты
CWE-1333
Связанные уязвимости
github
10 месяцев назад
Uptime Kuma's Regular Expression in pushdeeer and whapi file Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
EPSS
Процентиль: 12%
0.00039
Низкий
6 Medium
CVSS3
Дефекты
CWE-1333