Description

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named 65e94eda62dc8dc148ab3e59aa2ccc086ac448fd. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218003.

Remediation

References

https://github.com/Prestaul/skeemas/commit/65e94eda62dc8dc148ab3e59aa2ccc086ac448fd

https://vuldb.com/?ctiid.218003

https://vuldb.com/?id.218003

Related Vulnerabilities

CVE-2022-25892 Vulnerability in npm package hummus

CVE-2020-14967 Vulnerability in maven package org.webjars.bowergithub.kjur:jsrsasign

CVE-2019-0219 Vulnerability in npm package cordova-plugin-inappbrowser

CVE-2020-28279 Vulnerability in npm package flattenizer

CVE-2023-45133 Vulnerability in maven package org.webjars.npm:babel-traverse

Severity

High

Classification

CWE-1333 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Patch Third Party Advisory