Описание
Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, no patches are available.
Ссылки
- Issue Tracking
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:useragent_project:useragent:*:*:*:*:*:node.js:*:*
EPSS
Процентиль: 32%
0.00122
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333
Связанные уязвимости
CVSS3: 7.5
redhat
больше 1 года назад
Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, no patches are available.
CVSS3: 7.5
github
больше 1 года назад
useragent Regular Expression Denial of Service vulnerability
EPSS
Процентиль: 32%
0.00122
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333