CVE-2021-23446

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-23446

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-23446.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-23446

Aliases

GHSA-hf66-r44g-p7j9

Related

SNYK-DOTNET-HANDSONTABLE-1726793
SNYK-JAVA-ORGWEBJARS-1726795
SNYK-JAVA-ORGWEBJARSBOWER-1726796
SNYK-JAVA-ORGWEBJARSBOWERGITHUBHANDSONTABLE-1726794
SNYK-JAVA-ORGWEBJARSNPM-1726797
SNYK-JS-HANDSONTABLE-1726770

Published

2021-09-29T17:15:06Z

Modified

2025-07-29T09:35:41.348717Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

The package handsontable before 10.0.0; the package handsontable from 0 and before 10.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) in Handsontable.helper.isNumeric function.

References

Affected packages

Git / github.com/handsontable/handsontable

Affected ranges

Type: GIT
Repo: https://github.com/handsontable/handsontable
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

1443e4eda1c8bd61c58a5c7bd5ea6a4b104a5988

Affected versions

0.*

0.11.0

0.11.0-beta1

0.11.0-beta2

0.11.0-beta3

0.11.1

0.11.2

0.11.3

0.11.4

0.12.0

0.12.1

0.12.2

0.12.3

0.12.4

0.12.5

0.12.6

0.13.0

0.13.1

0.14.0

0.14.1

0.15.0

0.15.0-beta1

0.15.0-beta2

0.15.0-beta3

0.15.0-beta4

0.15.0-beta5

0.15.0-beta6

0.15.1

0.16.0

0.16.1

0.17.0

0.18.0

0.19.0

0.20.0

0.20.1

0.20.2

0.20.3

0.21.0

0.22.0

0.23.0

0.24.0

0.24.1

0.24.2

0.24.3

0.25.0

0.25.1

0.26.0

0.26.1

0.27.0

0.28.0

0.28.1

0.28.2

0.28.3

0.28.4

0.29.0

0.29.1

0.29.2

0.30.0

0.30.1

0.31.0

0.31.1

0.31.2

0.32.0

0.32.0-beta1

0.32.0-beta2

0.33.0

0.34.0

0.34.1

0.34.2

0.34.3

0.34.4

0.34.5

0.35.0

0.35.1

0.36.0

0.37.0

0.38.0

0.38.1

1.*

1.14.0

1.14.1

1.14.2

1.14.3

1.15.0

1.15.1

1.16.0

1.17.0

1.18.0

1.18.1

2.*

2.0.0

3.*

3.0.0

4.*

4.0.0

5.*

5.0.0

5.0.1

5.0.2

6.*

6.0.0

6.0.1

6.1.0

6.1.1

6.2.0

6.2.1

6.2.2

7.*

7.0.0

7.0.1

7.0.2

7.0.3

7.1.0

7.1.1

7.2.0

7.2.1

7.2.2

7.3.0

7.4.0

7.4.1

7.4.2

8.*

8.0.0

8.0.0-beta.2

8.1.0

8.2.0

8.3.0

8.3.1

8.3.2

8.4.0

9.*

9.0.0

9.0.1

9.0.2

v0.*

v0.10.0

v0.10.0-beta3

v0.10.0-beta4

v0.10.1

v0.10.2

v0.10.3

v0.10.4

v0.10.5

v0.4.0

v0.4.1

v0.4.2

v0.5.0

v0.6.0

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.8.0

v0.8.0-beta1

v0.8.0-beta2

v0.8.0-beta3

v0.8.1

v0.8.10

v0.8.11

v0.8.12

v0.8.13

v0.8.14

v0.8.15

v0.8.16

v0.8.17

v0.8.18

v0.8.19

v0.8.2

v0.8.20

v0.8.21

v0.8.22

v0.8.23

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v0.8.7

v0.8.8

v0.8.9

v0.9.0

v0.9.0-beta1

v0.9.0-beta2

v0.9.1

v0.9.10

v0.9.11

v0.9.12

v0.9.13

v0.9.14

v0.9.15

v0.9.16

v0.9.17

v0.9.18

v0.9.19

v0.9.2

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9