CVE-2021-38244

CVE-2021-38244

EPSS 1.2%

A regular expression denial of service (ReDoS) vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/cBioPortal/cbioportal/issues/8680 https://github.com/cBioPortal/cbioportal/pull/8751