CVE-2024-7779 Information

Description

A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular Expression Denial of Service (ReDoS) by manipulating regular expressions. This can significantly slow down the application’s response time and potentially render it completely unusable.

Reference

https://huntr.com/bounties/829f7d9f-8755-4362-bd40-801e4690dcdc