QwikSec

Security Database

CVE

CWE

Training

CVE-2021-36773

Published: Jul 18, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

uBlock Origin before 1.36.2 and nMatrix before 4.4.9 support an arbitrary depth of parameter nesting for strict blocking, which allows crafted web sites to cause a denial of service (unbounded recursion that can trigger memory consumption and a loss of all blocking functionality).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://news.ycombinator.com/item?id=27833752

x_refsource_MISC

https://github.com/vtriolet/writings/blob/main/posts/2021/ublock_origin_and_umatrix_denial_of_service.adoc

x_refsource_MISC

[debian-lts-announce] 20220629 [SECURITY] [DLA 3062-1] ublock-origin security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.