Vulnerabilities > CVE-2022-42966 - Unspecified vulnerability in Python-Poetry Cleo

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
python-poetry

Summary

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the cleo PyPI package, when an attacker is able to supply arbitrary input to the Table.set_rows method

Vulnerable Configurations

Part Description Count
Application
Python-Poetry
1