High severityNVD Advisory· Published Sep 17, 2021· Updated Aug 3, 2024
Inefficient Regular Expression Complexity in cdr/code-server
CVE-2021-3810
Description
code-server is vulnerable to Inefficient Regular Expression Complexity
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
code-servernpm | < 3.12.0 | 3.12.0 |
Affected products
6- osv-coords5 versionspkg:apk/chainguard/code-serverpkg:apk/chainguard/code-server-compatpkg:apk/wolfi/code-serverpkg:apk/wolfi/code-server-compatpkg:npm/code-server
< 0+ 4 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 3.12.0
- cdr/cdr/code-serverv5Range: unspecified
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-49x3-8228-3w3mghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3810ghsaADVISORY
- github.com/cdr/code-server/commit/ca617df135e78833f93c8320cb2d2cf8bba809f5ghsax_refsource_MISCWEB
- huntr.dev/bounties/38888513-30fc-4d8f-805d-34070d60e223ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.