← back
CVE-2021-36716

CVE-2021-36716

EPSS 1.0%
A ReDoS (regular expression denial of service) flaw was found in the Segment is-email package before 1.0.1 for Node.js. An attacker that is able to provide crafted input to the isEmail(input) function may cause an application to consume an excessive amount of CPU.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/segmentio/is-email/releaseshttps://segment.com/docs/release_notes/2021-07-13-cve-2021-36716/