Rewterz Threat Advisory – CVE-2021-32723 – Node.js prismjs module Vulnerability

Rewterz Threat Advisory – Multiple Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Vulnerabilities

June 29, 2021

Rewterz Threat Advisory – CVE-2021-35523 – Securepoint SSL VPN Client Vulnerability

June 29, 2021

Rewterz Threat Advisory – CVE-2021-32723 – Node.js prismjs module Vulnerability

Severity

High

Analysis Summary

CVE-2021-32723

Node.js prismjs module is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw when highlighting untrusted (user-given) text. By sending specially-crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service condition.

Impact

Denial of Service

Affected Vendors

Node.js

Affected Products

Node.js prismjs 1.23.0

Remediation

Upgrade to the latest version of prismjs (1.24.0 or later), available from the NPM Web site.

https://www.npmjs.com/advisories/1762

Rewterz Annual Threat Intelligence Report 2025 - Download Now

Rewterz Threat Advisory – Multiple Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Vulnerabilities

Rewterz Threat Advisory – CVE-2021-35523 – Securepoint SSL VPN Client Vulnerability

Rewterz Threat Advisory – CVE-2021-32723 – Node.js prismjs module Vulnerability

Severity

Analysis Summary

CVE-2021-32723

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan