Codemirror

codemirror

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Codemirror

codemirror

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-7760 2Codemirror Oracle 6Application Express CodemirrorEnterprise Manager Express User Interface+3 more Nov 21, 2024 Oct 30, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2. The vulnerable regular expression is located in https://github.com/codemirror/CodeMirror/blob/cdb228ac7...Show more This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2. The vulnerable regular expression is located in https://github.com/codemirror/CodeMirror/blob/cdb228ac736369c685865b122b736cd0d397836c/mode/javascript/javascript.jsL129. The ReDOS vulnerability of the regex is mainly due to the sub-pattern (s\|/.?/)Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-7760

2Codemirror

Oracle

6Application Express

CodemirrorEnterprise Manager Express User Interface+3 more

Nov 21, 2024

Oct 30, 2020

N/A· v4

7.5 HIGH· v3

5.0 MEDIUM· v2

This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2. The vulnerable regular expression is located in https://github.com/codemirror/CodeMirror/blob/cdb228ac736369c685865b122b736cd0d397836c/mode/javascript/javascript.jsL129. The ReDOS vulnerability of the regex is mainly due to the sub-pattern (s|/*.*?*/)*Show less