CVE-2026-13149 | juliangruber brace-expansion up to 5.0.6 String expand resource consumption

A vulnerability marked as problematic has been reported in juliangruber brace-expansion up to 5.0.6. This affects the function expand of the component String Handler. Performing a manipulation results in resource consumption.

This vulnerability is known as CVE-2026-13149. Remote exploitation of the attack is possible. No exploit is available.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More