CVE-2021-4437

CVSS 3.1 Score 7.7 of 10 (high)

Details

Published Feb 12, 2024
Updated: May 17, 2024
CWE ID 20

Summary

CVE-2021-4437 is a vulnerability affecting the dbartholomae lambda-middleware frameguard up to version 1.0.4. This issue lies in some unknown functionality of the JsonDeserializer.ts component in the JSON Mime-Type Handler. The flaw results in inefficient regular expression complexity, posing a potential risk. Upgrading to version 1.1.0 is the recommended solution, with the patch identified as f689404d830cbc1edd6a1018d3334ff5f44dc6a6. It is strongly advised to update the affected component, and VDB-253406 is the assigned identifier for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share