CNNVD-202602-1890 Information

CNNVD ID

CNNVD-202602-1890

Related CVE

CVE-2025-69873

• CNNVD Published: 2026-02-11

Description (Chinese)

Ajv JSON schema validator是Ajv JSON schema validator开源的一个JSON格式验证器。。 Ajv JSON schema validator 8.17.1及之前版本存在安全漏洞，该漏洞源于启用$data选项时容易受到正则表达式拒绝服务攻击，可能导致单个HTTP请求造成完全拒绝服务。

Description (English)

Ajv JSON schema validator is a JSON format certifier from Ajv JSON schema validator. Ajv JSON schema validator 8.17.1 and earlier versions had a security loophole, which stemmed from the fact that when the $data option was activated, it was vulnerable to a regular expression of denial of service, which could result in a complete denial of service as a result of a single HTTP request.

Vulnerability Type

其他

Affected Vendor

Ajv JSON schema validator

Published

2026-02-11

Last Modified

2026-02-24

References

https://github.com/advisories/GHSA-2g4f-4pwh-qvx6 https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md