HomeCVE Intelligence › CVE-2026-46378
CVSS 7.5 HIGH Vulnerability

CVE-2026-46378: Dasel: Denial of service in dasel selector lexer due to infinite loop on unterminated reg…

Summary dasel's selector lexer enters a non-terminating loop when tokenizing an unterminated regex pattern such as r/abc. A 2-byte input (r/) is sufficient to cause the tokenizer to consume 100% CPU on one core indefini…

7.5CVSS Score
HIGHSeverity
NOCISA KEV
VulnerabilityImpact Type

📋 Vulnerability Details

CVE IDCVE-2026-46378
Vendorgo
Affected Productgithub.com/tomwright/dasel/v3
Vulnerability TypeVulnerability
CVSS Score7.5 (HIGH)
Actively Exploited❌ No known exploitation
Patch StatusSee Vendor Advisory →
Reported ByCYBERDUDEBIVASH SENTINEL APEX Intelligence (via github_advisories)

🔬 Technical Analysis

#

Summary dasel's selector lexer enters a non-terminating loop when tokenizing an unterminated regex pattern such as r/abc. A 2-byte input (r/) is sufficient to cause the tokenizer to consume 100% CPU on one core indefinitely. I confirmed the issue on v3.3.1 (fba653c7f248aff10f2b89fca93929b64707dfc8) and on master commit 0dd6132e0c58edbd9b1a5f7ffd00dfab1e6085ad. I also verified the same code path is present in v3.0.0 (648f83baf070d9e00db8ff312febef857ec090a3). No fix is available yet.

Details The bug is in the matchRegexPattern closure within (*Tokenizer).parseCurRune in [selector/lexer/tokenize.go#L237-L247](https://github.com/TomWright/dasel/blob/fba653c7f248aff10f2b89fca93929b64707dfc8/selector/lexer/tokenize.go#L237-L247): ```go

matchRegexPattern := func(p

🎯 Known Indicators of Compromise

{"type":"sha1","value":"fba653c7f248aff10f2b89fca93929b64707dfc8","confidence_score":0.9,"first_seen":"2026-05-19","source_count":1} {"type":"sha1","value":"0dd6132e0c58edbd9b1a5f7ffd00dfab1e6085ad","confidence_score":0.9,"first_seen":"2026-05-19","source_count":1} {"type":"sha1","value":"648f83baf070d9e00db8ff312febef857ec090a3","confidence_score":0.9,"first_seen":"2026-05-19","source_count":1} {"type":"url","value":"https://github.com/TomWright/dasel/blob/fba653c7f248aff10f2b89fca93929b64707dfc8/selector/lexer/toke","confidence_score":0.82,"first_seen":"2026-05-19","source_count":1}

📚 Advisory References

⚡ DETECTION RULES AVAILABLE

Get CVE-2026-46378 Detection Pack

Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.

✓ Sigma Rules ✓ YARA Pack ✓ IOC Table ✓ SIEM Queries
🛡️ Get Detection Pack → 🔌 Access via API →

🔗 Related Intelligence