semver-regex is vulnerable to Inefficient Regular Expression Complexity
The MITRE CVE dictionary describes this issue as:
semver-regex is vulnerable to Inefficient Regular Expression Complexity
The Red Hat Directory Server 11 Web UI semver-regex as a dependency, but it is not used in the 389-ds cockpit plugin, and not shipped as part of the RPM binary. Thus Red Hat Directory Server 11 is not affected by this flaw.