An issue was discovered in Delight Nashorn Sandbox. There is an ReDoS vulnerability that can be exploited to launching a denial of service (DoS) attack.

References

• https://nvd.nist.gov/vuln/detail/CVE-2021-40660
• javadelight/delight-nashorn-sandbox#117
• javadelight/delight-nashorn-sandbox#117 (comment)
• javadelight/delight-nashorn-sandbox#139
• javadelight/delight-nashorn-sandbox@b899b8e
• https://github.com/javadelight/delight-nashorn-sandbox/releases/tag/0.3.1