Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Markdown parser in Zulip server before 2.0.5 used a regular expression vulnerable to exponential backtracking. A user who is logged into the server could send a crafted message causing the server to spend an effectively arbitrary amount of CPU time and stall the processing of future messages.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zulip server Markdown解析器资源管理错误漏洞
Vulnerability Description
Zulip server是美国Zulip公司的一款开源的团队聊天应用程序。Markdown parser是其中的一个Markdown标记语言解析器。 Zulip server 2.0.5之前版本中的Markdown解析器存在资源管理错误漏洞。该漏洞源于网络系统或产品对系统资源(如内存、磁盘空间、文件等)的管理不当。
CVSS Information
N/A
Vulnerability Type
N/A