CVE-2021-3822

Name of the Vulnerable Software and Affected Versions: jsoneditor (affected versions not specified)

Description: The issue concerns Inefficient Regular Expression Complexity, specifically a ReDoS (regular expression denial of service) vulnerability. This allows an attacker to cause an application to consume an excessive amount of CPU by providing a crafted element as input to the getInnerText function. The jsoneditor package is a web-based tool used to view, edit, format, and validate JSON, offering various modes such as a tree editor, a code editor, and a plain text editor.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.