CVE-2024-8764 Information

Description

A vulnerability in lunary-ai/lunary as of commit be54057 allows users to upload and execute arbitrary regular expressions on the server side. This can lead to a Denial of Service (DoS) condition as certain regular expressions can cause excessive resource consumption blocking the server from processing other requests.

Reference

https://github.com/lunary-ai/lunary/commit/7ff89b0304d191534b924cf063f3648206d497fa https://huntr.com/bounties/088c04a1-d23a-47f2-9d7c-b84d7332868d