CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

SUSE CVE•added 2024/10/30 5:7 a.m.•4 views

SUSE CVE-2020-26311

Useragent is a user agent parser for Node.js. All versions as of time of publication contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no patches are available...

8.7CVSS7AI score0.00493EPSS

Exploits1References3

RedhatCVE•added 2024/10/28 5:54 a.m.•21 views

CVE-2020-26311

A flaw was found in Useragent package, a user agent parser for Node.js. Affected versions of this package contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. Mitigation Mitigation for this issue is either not available or the currently...

7.5CVSS6.2AI score0.00493EPSS

Exploits1References5

vulnersOsv•added 2024/10/26 9:30 p.m.•6 views

3dtoolkit-signal (>=1.1.0 <=2.1.0), 6to5 (>=3.0.16 <=3.6.5) +3745 more potentially affected by CVE-2020-26311 via useragent (>=0.1.2 <=2.3.0)

useragent NPM version =0.1.2, =1.1.0, =3.0.16, =0.0.1, =3.0.16, =0.0.1, =4.0.0, =0.0.15, =8.25.29, =0.2.0-alpha.1, =3.0.1, =1.0.54, =4.0.0, =5.0.13 - @adora-wallet/adoracore-build =8.25.10 and more Source cves: CVE-2020-26311 Source advisory: OSV:GHSA-MGFV-M47X-4WQP...

8.7CVSS7.1AI score0.00493EPSS

Exploits1

OSV•added 2024/10/26 9:15 p.m.•3 views

CVE-2020-26311

7.5CVSS5.8AI score0.00493EPSS

Exploits1References2

NVD•added 2024/10/26 9:15 p.m.•18 views

CVE-2020-26311

8.7CVSS0.00493EPSS

Exploits1References2

CVE•added 2024/10/26 8:26 p.m.•63 views

CVE-2020-26311

The CVE-2020-26311 entry concerns the Node.js Useragent parser. The connected sources confirm a Regular Expression Denial of Service (ReDoS) vulnerability caused by one or more part-regular expressions within the useragent package, affecting all versions at the time of publication. The impact is ...

8.7CVSS7.5AI score0.00493EPSS

Exploits1References2Affected Software1