Vulnerabilities > CVE-2021-23341 - Unspecified vulnerability in Prismjs Prism

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

prismjs

NVD

Published: 2021-02-18

Updated: 2021-02-26

Summary

The package prismjs before 1.23.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the prism-asciidoc, prism-rest, prism-tap and prism-eiffel components.

Vulnerable Configurations

Part	Description	Count
Application	Prismjs Prismjs Prism - Prismjs Prism 1.0.0 Prismjs Prism 1.0.1 Prismjs Prism 1.1.0 Prismjs Prism 1.2.0 Prismjs Prism 1.3.0 Prismjs Prism 1.4.0 Prismjs Prism 1.4.1 Prismjs Prism 1.5.0 Prismjs Prism 1.5.1 Prismjs Prism 1.6.0 Prismjs Prism 1.7.0 Prismjs Prism 1.8.0 Prismjs Prism 1.8.1 Prismjs Prism 1.8.2 Prismjs Prism 1.8.3 Prismjs Prism 1.8.4 Prismjs Prism 1.9.0 Prismjs Prism 1.10.0 Prismjs Prism 1.11.0 Prismjs Prism 1.12.0 Prismjs Prism 1.12.1 Prismjs Prism 1.12.2 Prismjs Prism 1.13.0 Prismjs Prism 1.14.0 Prismjs Prism 1.15.0 Prismjs Prism 1.16.0 Prismjs Prism 1.17.0 Prismjs Prism 1.17.1 Prismjs Prism 1.18.0 Prismjs Prism 1.19.0 Prismjs Prism 1.20.0 Prismjs Prism 1.21.0 Prismjs Prism 1.22.0	34

Summary

Vulnerable Configurations

References