contains nested quantifiers: the inner group `([A-Z0-9]+-)` uses `*` and the outer group uses `+`, creating ambiguous overlap. When a malformed serial number with many repeated segments is provided (e.g., 'IOT-A-B-C-...-Z-'), the regex engine explo",
"url": "https://onebugatatime.com/snippet/regex-dos-via-catastrophic-backtracking-in-re-search-python",
"learningResourceType": "Interactive exercise",
"educationalUse": "Security training",
"educationalLevel": "hard",
"programmingLanguage": "Python",
"inLanguage": "en",
"isPartOf": {
"@type": "WebApplication",
"name": "onebugatatime.com",
"url": "https://onebugatatime.com"
},
"about": [
{
"@type": "Thing",
"name": "CWE-1333"
},
{
"@type": "Thing",
"name": "A05:2021 - Security Misconfiguration"
}
]
}