lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service (ReDoS) via a CDATA section.
Threat-Mapped Scoring
Score: 1.5
Priority: P4 - Informational (Low)
EPSS
Score: 0.00403
Percentile:
0.60058
CVSS Scoring
CVSS v3.1 Score: 7.5
Severity: HIGH
Mapped CWE(s)
-
CWE-1333
: Inefficient Regular Expression Complexity
All CAPEC(s)
-
CAPEC-492: Regular Expression Exponential Blowup
CAPEC(s) with Mapped TTPs
Mapped ATT&CK TTPs
Affected Products
- cpe:2.3:a:remarkable_project:remarkable:1.7.1:*:*:*:*:node.js:*:*
← Back to Home