Exploit for #VU27690 Resource exhaustion in UAParser.js
Vulnerability identifier: #VU27690
Vulnerability risk: Medium
CVSSv3.1: 7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-400
Exploitation vector: Network
Exploits in database: 1
- May 11, 2020
- ua-parser-js npm module ReDoS [Metasploit]
Impact: Denial of service
Vulnerable software:
UAParser.js
Web applications /
JS libraries
Vendor: Faisal Salman
