A vulnerability classified as problematic has been found in Flask-RESTX up to 0.5.0. Affected is the function email_regex of the component Regular Expression Handler. Upgrading to version 0.5.1 eliminates this vulnerability. Applying the patch bab31e085f355dd73858fd3715f7ed71849656da is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Flask-RESTX up to 0.5.0 Regular Expression email_regex resource consumption
- Virtual Patching
- September 21, 2021
- 9:05 am
- Virtual Patching
- September 21, 2021
- 9:05 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2024-24856 : LINUX KERNEL UP TO 6.8 ACPI_ALLOCATE_ZEROED NULL POINTER DEREFERENCE
Description The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer
CVE-2024-2912 : BENTOML FRAMEWORK UP TO 1.2.4 POST REQUEST INSECURE DEFAULT INITIALIZATION OF RESOURCE
Description An insecure deserialization vulnerability exists in the BentoML framework, allowing remote code execution (RCE) by sending a specially crafted
CVE-2024-26817 : LINUX KERNEL UP TO 6.8.5 AMDKFD KZALLOC INTEGER OVERFLOW
Description In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer