How severe is CVE-2020-26304?

CVE-2020-26304 has a CVSS v3 score of 7.5 (HIGH).

CVE-2020-26304

Name: foundation
Author: foundation

7.5HIGH

Foundation is a front-end framework. Versions 6.3.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, it

发布于: 10/26/2024更新于: 11/13/2024

描述

Foundation is a front-end framework. Versions 6.3.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, it is unknown if any fixes are available.

AI分析AI驱动

受影响产品

foundationfoundation

参考资料

https://github.com/foundation/foundation-sites/issues/12180
Issue TrackingThird Party Advisory
https://securitylab.github.com/advisories/GHSL-2020-290-redos-foundation-sites/
ExploitThird Party Advisory