Arbitrary Depth Parameter Nesting Denial of Service Vulnerability

Arbitrary Depth Parameter Nesting Denial of Service Vulnerability

CVE-2021-36773 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

uBlock Origin before 1.36.2 and nMatrix before 4.4.9 support an arbitrary depth of parameter nesting for strict blocking, which allows crafted web sites to cause a denial of service (unbounded recursion that can trigger memory consumption and a loss of all blocking functionality).

Learn more about our Web App Pen Testing.