CVE-2020-26311

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-26311

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-26311.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-26311

Aliases

GHSA-mgfv-m47x-4wqp

Published

2024-10-26T21:15:14.400Z

Modified

2026-04-10T04:25:25.459135Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, no patches are available.

References

https://github.com/3rd-Eden/useragent/issues/167
https://securitylab.github.com/advisories/GHSL-2020-312-redos-useragent/

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-26311.json"