CVE-2015-2326 vulnerability in Pcre and Other Products
Published on January 14, 2020

The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/".

NVD

Products Associated with CVE-2015-2326

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2015-2326 are published in these products:

Pcre

OpenSuse

MariaDB

PHP

Exploit Probability

EPSS

0.57%

Percentile

68.24%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-2326 vulnerability in Pcre and Other ProductsPublished on January 14, 2020

Products Associated with CVE-2015-2326

Exploit Probability

CVE-2015-2326 vulnerability in Pcre and Other Products
Published on January 14, 2020