Описание
Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.
A denial of service vulnerability exists in markdown-it-py.An attacker could craft a payload with invalid UTF-8 characters as input to cause a crash thereby affecting the availability
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ansible Automation Platform 2 | ansible-lint | Not affected | ||
| Red Hat Ansible Automation Platform 2 | ansible-navigator | Not affected | ||
| Red Hat Ansible Automation Platform 2 | python3x-ansible-compat | Not affected | ||
| Red Hat Ansible Automation Platform 2 | python-ansible-compat | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.
Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.
Denial of service could be caused to the command line interface of mar ...
markdown-it-py Denial of Service vulnerability in the command line interface
EPSS
5.5 Medium
CVSS3