VYPR

CWE-1333

Inefficient Regular Expression Complexity

BaseDraftLikelihood: High

Description

The product uses a regular expression with a worst-case computational complexity that is inefficient and possibly exponential.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-492

CVEs mapped to this weakness (332)

page 4 of 17
  • CVE-2026-40319MedApr 17, 2026
    risk 0.36cvss 5.5epss 0.00

    Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger…

  • CVE-2026-0967MedMar 26, 2026
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in libssh. A remote attacker, by controlling client configuration files or known_hosts files, could craft specific hostnames that when processed by the `match_pattern()` function can lead to inefficient regular expression backtracking. This can cause timeouts…

  • CVE-2024-47889MedOct 16, 2024
    risk 0.36cvss epss 0.01

    Action Mailer is a framework for designing email service layers. Starting in version 3.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a possible ReDoS vulnerability in the block_format helper in Action Mailer. Carefully crafted text can cause the…

  • CVE-2024-47888MedOct 16, 2024
    risk 0.36cvss epss 0.01

    Action Text brings rich text content and editing to Rails. Starting in version 6.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a possible ReDoS vulnerability in the `plain_text_for_blockquote_node helper` in Action Text. Carefully crafted text can…

  • CVE-2024-47887MedOct 16, 2024
    risk 0.36cvss epss 0.01

    Action Pack is a framework for handling and responding to web requests. Starting in version 4.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a possible ReDoS vulnerability in Action Controller's HTTP Token authentication. For applications using HTTP…

  • CVE-2018-3738MedJun 7, 2018
    risk 0.36cvss 5.5epss 0.01

    protobufjs is vulnerable to ReDoS when parsing crafted invalid .proto files.

  • CVE-2026-44796MedMay 28, 2026
    risk 0.35cvss 6.5epss 0.00

    Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints (for example, /dcim/interfaces/rename/) were vulnerable to application-wide denial of service via maliciously crafted regular expressions in…

  • CVE-2026-34939MedApr 3, 2026
    risk 0.35cvss 6.5epss 0.00

    PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re…

  • CVE-2024-10270MedNov 25, 2024
    risk 0.35cvss 6.5epss 0.01

    A vulnerability was found in the Keycloak-services package. If untrusted data is passed to the SearchQueryUtils method, it could lead to a denial of service (DoS) scenario by exhausting system resources due to a Regex complexity.

  • CVE-2026-5986MedApr 9, 2026
    risk 0.34cvss 5.3epss 0.00

    A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack…

  • CVE-2025-9670MedAug 29, 2025
    risk 0.34cvss 5.3epss 0.00

    A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit…

  • CVE-2025-6493MedJun 22, 2025
    risk 0.34cvss 5.3epss 0.00

    A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely.…

  • CVE-2025-6492MedJun 22, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability has been found in MarkText up to 0.17.1 and classified as problematic. Affected by this vulnerability is the function getRecommendTitleFromMarkdownString of the file marktext/src/main/utils/index.js. The manipulation leads to inefficient regular expression…

  • CVE-2025-48058MedJun 20, 2025
    risk 0.34cvss epss 0.00

    PowSyBl (Power System Blocks) is a framework to build power system oriented software. Prior to version 6.7.2, there is a potential polynomial Regular Expression Denial of Service (ReDoS) vulnerability in the PowSyBl's DataSource mechanism. If successfully exploited, a malicious…

  • CVE-2025-27789MedMar 11, 2025
    risk 0.33cvss 6.2epss 0.00

    Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression named capturing groups, Babel will generate a polyfill for the `.replace` method that has quadratic complexity on some…

  • CVE-2025-26042MedMar 17, 2025
    risk 0.32cvss 6.0epss 0.00

    Uptime Kuma >== 1.23.0 has a ReDoS vulnerability, specifically when an administrator creates a notification through the web service. If a string is provided it triggers catastrophic backtracking in the regular expression, leading to a ReDoS attack.

  • CVE-2026-4923MedMar 26, 2026
    risk 0.31cvss 5.9epss 0.00

    Impact: When using multiple wildcards, combined with at least one parameter, a regular expression can be generated that is vulnerable to ReDoS. This backtracking vulnerability requires the second wildcard to be somewhere other than the end of the path. Unsafe examples: …

  • CVE-2026-44425MedMay 13, 2026
    risk 0.28cvss 5.4epss 0.00

    ShellHub is a centralized SSH gateway. Prior to 0.24.2, the device list endpoint accepts user-controlled identifiers in the the name field of each filter property in the base64-encoded filter query parameter and the sort_by query parameter, which are then passed directly as…

  • CVE-2025-4690MedAug 19, 2025
    risk 0.28cvss 4.3epss 0.00

    A regular expression used by AngularJS'  linky https://docs.angularjs.org/api/ngSanitize/filter/linky  filter to detect URLs in input text is vulnerable to super-linear runtime due to backtracking. With a large carefully-crafted input, this can cause a Regular expression…

  • CVE-2025-7579MedJul 14, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in chinese-poetry 0.1. It has been rated as problematic. This issue affects some unknown processing of the file rank/server.js. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The exploit has…