CVE-2024-8764

Name of the Vulnerable Software and Affected Versions lunary-ai/lunary versions be54057 and later

Description The issue allows users to upload and execute arbitrary regular expressions on the server, potentially leading to a Denial of Service (DoS) condition due to excessive resource consumption. This can block the server from processing other requests.

Recommendations For versions be54057 and later, consider disabling the execution of regular expressions on the server side until a patch is available to prevent potential Denial of Service (DoS) conditions. Restrict access to the server to minimize the risk of exploitation by limiting the ability of users to upload and execute arbitrary regular expressions.