commenthol

6 exploits Active since Feb 2019
CVE-2018-20164 WRITEUP MEDIUM WRITEUP
uaparser/user_agent_parser-core < 0.6.0 - Regular Expression Denial of Service via User-Agent Header
An issue was discovered in regex.yaml (aka regexes.yaml) in UA-Parser UAP-Core before 0.6.0. A Regular Expression Denial of Service (ReDoS) issue allows remote attackers to overload a server by setting the User-Agent header in an HTTP(S) request to a value containing a long digit string. (The UAP-Core project contains the vulnerability, propagating to all implementations.)
CVSS 5.3
CVE-2018-20164 WRITEUP MEDIUM WRITEUP
uaparser/user_agent_parser-core < 0.6.0 - Regular Expression Denial of Service via User-Agent Header
An issue was discovered in regex.yaml (aka regexes.yaml) in UA-Parser UAP-Core before 0.6.0. A Regular Expression Denial of Service (ReDoS) issue allows remote attackers to overload a server by setting the User-Agent header in an HTTP(S) request to a value containing a long digit string. (The UAP-Core project contains the vulnerability, propagating to all implementations.)
CVSS 5.3
CVE-2019-16772 WRITEUP LOW WRITEUP
serialize-to-js < 3.0.1 - Cross-Site Scripting via Regular Expression Serialization
The serialize-to-js NPM package before version 3.0.1 is vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions. This vulnerability is not affected on Node.js environment since Node.js's implementation of RegExp.prototype.toString() backslash-escapes all forward slashes in regular expressions. If serialized data of regular expression objects are used in an environment other than Node.js, it is affected by this vulnerability.
CVSS 3.1
CVE-2020-5243 WRITEUP MEDIUM WRITEUP
uap-core < 0.7.3 - Denial of Service via User-Agent Regex Processing
uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service (REDoS) due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent header in an HTTP(S) request to maliciously crafted long strings. This has been patched in uap-core 0.7.3.
CVSS 5.7
CVE-2021-21317 WRITEUP MEDIUM WRITEUP
uap-core < 0.11.0 - Regular Expression Denial of Service via User-Agent Header
uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. In uap-core before version 0.11.0, some regexes are vulnerable to regular expression denial of service (REDoS) due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent header in an HTTP(S) request to maliciously crafted long strings. This is fixed in version 0.11.0. Downstream packages such as uap-python, uap-ruby etc which depend upon uap-core follow different version schemes.
CVSS 5.3
CVE-2023-25805 WRITEUP CRITICAL WRITEUP
versionn < 1.1.0 - OS Command Injection
versionn, software for changing version information across multiple files, has a command injection vulnerability in all versions prior to version 1.1.0. This issue is patched in version 1.1.0.
CVSS 9.8