Skip to main content

Configobj

1 CVEs product

Monthly

CVE-2023-26112 PyPI MEDIUM POC PATCH This Month

All versions of the package configobj are vulnerable to Regular Expression Denial of Service (ReDoS) via the validate function, using (.+?)\((.*)\). Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Denial Of Service Configobj
NVD GitHub
CVSS 3.1
5.9
EPSS
1.3%
EPSS 1% CVSS 5.9
MEDIUM POC PATCH This Month

All versions of the package configobj are vulnerable to Regular Expression Denial of Service (ReDoS) via the validate function, using (.+?)\((.*)\). Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Denial Of Service Configobj
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy