Vulnerability ID: VDB-217620, CVE-2021-4306, GCVE-100-217620 CVSS Meta Temp Score: 4.8 Current Exploit Price: $0-$5k CTI Interest Score: 0.14 Summary: A problematic vulnerability exists in cronvel terminal-kit up to 2.1.7, leading to a ReDoS vulnerability. No public exploit is available, but upgrading the component is recommended. Details: - The vulnerability affects unknown code and is classified under CWE-1333. Regular expressions with inefficient computation can cause excessive CPU usage. - Published on 01/07/2023 as . Exploit via CVE-2021-4306, none publicly known. GitHub has the advisory. - MITRE ATT&CK classifies the attack as T1449.003; upgrading to version 2.1.8 or later resolves the issue. - Fixes are ready for download at github.com.