NotCVE - vendor:"Mpmath" product:"Mpmath" version:" >= 1.0.0 <= 1.2.1"

1 results (0.010 seconds)

CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 1

CVE-2021-29063

https://notcve.org/view.php?id=CVE-2021-29063

A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath v1.0.0 through v1.2.1 when the mpmathify function is called. Se ha descubierto una vulnerabilidad de denegación de servicio de expresiones regulares (ReDOS) en Mpmath v1.0.0 hasta v1.2.1 cuando se llama a la función mpmathify • https://github.com/fredrik-johansson/mpmath/commit/46d44c3c8f3244017fe1eb102d564eb4ab8ef750 https://github.com/mpmath/mpmath/releases/tag/1.3.0 https://github.com/npm/hosted-git-info/pull/76 https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md https://github.com/yetingli/SaveResults/blob/main/js/hosted-git-info.js https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3M5O55E7VUDMXCPQR6MQTOIFDKHP36AA https://lists.fedoraproject.org/archives/list/package • CWE-770: Allocation of Resources Without Limits or Throttling •