Mako
1 CVEs
product
Monthly
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Denial Of Service
Mako
Debian Linux
NVD
GitHub
CVSS 3.1
7.5
EPSS
1.7%
CVE-2022-40023
PyPI
EPSS 2%
CVSS 7.5
HIGH
POC
PATCH
This Week
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Denial Of Service
Mako
Debian Linux
NVD
GitHub