vulnerability
Red Hat: CVE-2022-40023: REDoS in Lexer class (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Sep 7, 2022 | May 15, 2023 | Sep 26, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Sep 7, 2022
Added
May 15, 2023
Modified
Sep 26, 2025
Description
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin.
Solutions
no-fix-redhat-rpm-packageredhat-upgrade-python3-mako
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.