Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ua-parser-js project ua-parser-js vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-25927
Versions of the package ua-parser-js from 0.7.30 and prior to 0.7.33, from 0.8.1 and prior to 1.0.33 are vulnerable to Regular Expression Denial of Service (ReDoS) via the trim() function.
Ua-parser-js Project Ua-parser-js
676
VMScore
CVE-2021-4229
A vulnerability was found in ua-parser-js 0.7.29/0.8.0/1.0.0. It has been rated as critical. This issue affects the crypto mining component which introduces a backdoor. Upgrading to version 0.7.30, 0.8.1 and 1.0.1 is able to address this issue. It is recommended to upgrade the af...
Ua-parser-js Project Ua-parser-js 1.0.0
Ua-parser-js Project Ua-parser-js 0.8.0
Ua-parser-js Project Ua-parser-js 0.7.29
446
VMScore
CVE-2021-27292
ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing it for an extended period of time.
Ua-parser-js Project Ua-parser-js
446
VMScore
CVE-2020-7793
The package ua-parser-js prior to 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).
Ua-parser-js Project Ua-parser-js
Siemens Sinec Ins 1.0
Siemens Sinec Ins
446
VMScore
CVE-2020-7733
The package ua-parser-js prior to 0.7.22 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex for Redmi Phones and Mi Pad Tablets UA.
Ua-parser-js Project Ua-parser-js
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.7.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started