AngularJS Inefficient Regular Expression Complexity Vulnerability - CVE-2022-25844 - Vulnerability Database

AngularJS Inefficient Regular Expression Complexity Vulnerability - CVE-2022-25844

High
Reference: CVE-2022-25844
Title: AngularJS Inefficient Regular Expression Complexity Vulnerability
Overview:

The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service (ReDoS) by providing a custom locale rule that makes it possible to assign the parameter in posPre: 39 39.repeat() of NUMBER_FORMATS.PATTERNS1.posPre with a very high value. Note: 1) This package has been deprecated and is no longer maintained. 2) The vulnerable versions are 1.7.0 and higher.