Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
uap-core project uap-core vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2021-21317
uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. In uap-core before version 0.11.0, some regexes are vulnerable to regular expression denial of service (REDoS) due to overlapping capture groups. This allows r...
Uap-core Project Uap-core
7.5
CVSSv3
CVE-2020-5243
uap-core prior to 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service (REDoS) due to overlapping capture groups. This allows remote malicious users to overload a server b...
Uap-core Project Uap-core
5.3
CVSSv3
CVE-2018-20164
An issue exists in regex.yaml (aka regexes.yaml) in UA-Parser UAP-Core prior to 0.6.0. A Regular Expression Denial of Service (ReDoS) issue allows remote malicious users to overload a server by setting the User-Agent header in an HTTP(S) request to a value containing a long digit...
Uaparser User Agent Parser-core
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started