Vulnerabilities > CVE-2022-42964 - Unspecified vulnerability in Pymatgen

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
pymatgen

Summary

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the pymatgen PyPI package, when an attacker is able to supply arbitrary input to the GaussianInput.from_string method

Vulnerable Configurations

Part Description Count
Application
Pymatgen
1