{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.10" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.11" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.12" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.2" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.3" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.4" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.6" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "106.11.8-alpha0\\.7" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "106.11.7" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "b78927d85a6cb4f0540f89e4f923229462e897d3" } ], "repo": "https://github.com/restsharp/RestSharp", "type": "GIT" } ] } ], "details": "RestSharp \u003c 106.11.8-alpha.0.13 uses a regular expression which is vulnerable to Regular Expression Denial of Service (ReDoS) when converting strings into DateTimes. If a server responds with a malicious string, the client using RestSharp will be stuck processing it for an exceedingly long time. Thus the remote server can trigger Denial of Service.", "id": "CVE-2021-27293", "modified": "2026-03-13T21:47:13.440341014Z", "published": "2021-07-12T11:15:08.100Z", "references": [ { "type": "WEB", "url": "https://restsharp.dev/" }, { "type": "FIX", "url": "https://github.com/restsharp/RestSharp/issues/1556" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }