Vulnerabilities > CVE-2018-1107 - Unspecified vulnerability in Is-My-Json-Valid Project Is-My-Json-Valid

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
LOW
network
low complexity
is-my-json-valid-project

Summary

It was discovered that the is-my-json-valid JavaScript library used an inefficient regular expression to validate JSON fields defined to have email format. A specially crafted JSON file could cause it to consume an excessive amount of CPU time when validated.

Vulnerable Configurations

Part Description Count
Application
Is-My-Json-Valid_Project
53