Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TF2 Item Format Regular Expression Denial of Service vulnerability
Vulnerability Description
TF2 Item Format helps users format TF2 items to the community standards. Versions of `tf2-item-format` since at least `4.2.6` and prior to `5.9.14` are vulnerable to a Regular Expression Denial of Service (ReDoS) attack when parsing crafted user input. This vulnerability can be exploited by an attacker to perform DoS attacks on any service that uses any `tf2-item-format` to parse user input. Version `5.9.14` contains a fix for the issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
可执行体正则表达式错误
Vulnerability Title
TF2 Item Format 安全漏洞
Vulnerability Description
TF2 Item Format是GlenCoco个人开发者的一个库。可帮助用户将 TF2 项目的格式设置为社区标准。 TF2 Item Format 5.9.14 版本之前存在安全漏洞,该漏洞源于 tf2-item-format 函数在解析精心设计的用户输入时容易受到正则表达式拒绝服务 (ReDoS) 攻击。
CVSS Information
N/A
Vulnerability Type
N/A