CVE-2021-23446

Inefficient Regular Expression Complexity in npm/handsontable

Identifier

CVE-2021-23446

Package Slug

npm/handsontable

Vulnerability

Inefficient Regular Expression Complexity

Description

The package handsontable is vulnerable to Regular Expression Denial of Service (ReDoS) in Handsontable.helper.isNumeric function.

Affected Versions

All versions before 10.0.0

Solution

Upgrade to version 10.0.0 or above.

Last Modified

2021-10-10

source