CVE-2026-52794
Analyzed Analyzed - Analysis Complete

Regular Expression Denial of Service in Sentry

Vulnerability report for CVE-2026-52794, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-24

Last updated on: 2026-06-27

Assigner: GitHub, Inc.

Description

Sentry is an error tracking and performance monitoring tool. From 24.4.0 until 26.5.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists in Sentry's event ingestion pipeline, where a regex applied to attacker-controlled fields on incoming events can be made to consume disproportionate CPU time. This vulnerability is fixed in 26.5.2.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-24
Last Modified
2026-06-27
Generated
2026-07-15
AI Q&A
2026-06-25
EPSS Evaluated
2026-07-13
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
sentry sentry From 24.4.0 (inc) to 26.5.2 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1333 The product uses a regular expression with an inefficient, possibly exponential worst-case computational complexity that consumes excessive CPU cycles.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Compliance Impact

The vulnerability described is a Regular Expression Denial of Service (ReDoS) affecting Sentry's event ingestion pipeline, which can lead to high CPU consumption and availability issues.

There is no information provided about the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

This vulnerability is a Regular Expression Denial of Service (ReDoS) issue in Sentry's event ingestion pipeline. It occurs because a regular expression is applied to fields in incoming events that can be controlled by an attacker. By crafting specific input, an attacker can cause the regex to consume excessive CPU resources, leading to a denial of service.

Impact Analysis

The vulnerability can cause a denial of service by making the system consume disproportionate CPU time when processing attacker-controlled input. This can degrade performance or make the Sentry service unavailable, impacting monitoring and error tracking capabilities.

Mitigation Strategies

To mitigate this vulnerability, you should upgrade Sentry to version 26.5.2 or later, where the Regular Expression Denial of Service (ReDoS) issue has been fixed.

Detection Guidance

This vulnerability can be detected by monitoring for sustained high CPU usage in the Sentry processes responsible for event ingestion, specifically the taskworker and events-consumer processes.

Since the vulnerability involves a Regular Expression Denial of Service (ReDoS) triggered by attacker-controlled fields in incoming events, observing unusually high CPU consumption or degraded ingestion throughput may indicate exploitation attempts.

Suggested commands to detect this condition include:

  • Use top or htop to monitor CPU usage of Sentry processes: `top -p $(pgrep -d',' -f 'sentry.taskworker|sentry.events-consumer')`
  • Use ps to check CPU usage snapshot: `ps -eo pid,comm,pcpu --sort=-pcpu | grep -E 'sentry.taskworker|sentry.events-consumer'`
  • Check logs for unusual event ingestion delays or errors related to regex processing.

Additionally, operators should consider applying rate limits on publicly exposed DSNs to mitigate potential abuse.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-52794. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart