CVE-2023-4316: Inefficient Regular Expression Complexity

September 28, 2023 (updated September 29, 2023)

Zod in version 3.22.2 allows an attacker to perform a denial of service while validating emails

References

fluidattacks.com/advisories/swift
nvd.nist.gov/vuln/detail/CVE-2023-4316
www.npmjs.com/package/zod

Code Behaviors & Features

Detect and mitigate CVE-2023-4316 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →