Regular Expression Denial of Service (ReDoS) vulnerability in ua-parser-js before 0.7.22

Regular Expression Denial of Service (ReDoS) vulnerability in ua-parser-js before 0.7.22

CVE-2020-7733 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The package ua-parser-js before 0.7.22 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex for Redmi Phones and Mi Pad Tablets UA.

Learn more about our Web Application Penetration Testing UK.