Description
lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service (ReDoS) via a CDATA section.
Remediation
References
https://github.com/jonschlinkert/remarkable/issues/331
Related Vulnerabilities
CVE-2017-16008 Vulnerability in npm package i18next
CVE-2019-10747 Vulnerability in maven package org.webjars.npm:set-value
CVE-2021-20220 Vulnerability in maven package io.undertow:undertow-core
CVE-2021-3777 Vulnerability in npm package tmpl
CVE-2023-49145 Vulnerability in maven package org.apache.nifi:nifi-jolt-transform-json-ui