Skip to main content

Uap Core

2 CVEs product

Monthly

CVE-2021-21317 npm MEDIUM PATCH This Month

uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Node.js Python Denial Of Service Uap Core
NVD GitHub
CVSS 3.1
5.3
EPSS
2.5%
CVE-2020-5243 LIB HIGH POC PATCH This Week

uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Uap Core
NVD GitHub
CVSS 3.1
7.5
EPSS
2.3%
EPSS 3% CVSS 5.3
MEDIUM PATCH This Month

uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Node.js Python Denial Of Service +1
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Uap Core
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy