CVE-2018-20801

Published: Mar 14, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

In js/parts/SvgRenderer.js in Highcharts JS before 6.1.0, the use of backtracking regular expressions permitted an attacker to conduct a denial of service attack against the SVGRenderer component, aka ReDoS.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://snyk.io/vuln/npm:highcharts:20180225

x_refsource_MISC

https://github.com/highcharts/highcharts/commit/7c547e1e0f5e4379f94396efd559a566668c0dfa

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20190715-0001/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-20801

Description

Affected Products

References