VulnerableCode Package Details - pkg:deb/debian/node-ua-parser-js@0.7.14-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/node-ua-parser-js@0.7.14-1

Essentials
History (6)

purl	pkg:deb/debian/node-ua-parser-js@0.7.14-1

Next non-vulnerable version	0.8.1+ds+~0.7.36-3
Latest non-vulnerable version	0.8.1+ds+~0.7.36-3
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-6c98-q4en-3uek Aliases: CVE-2020-7793 GHSA-394c-5j6w-4xmx	ua-parser-js Regular Expression Denial of Service vulnerability The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).	0.7.24+ds-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-j1g9-gab7-cbch Aliases: CVE-2021-27292 GHSA-78cj-fxph-m83p	Regular Expression Denial of Service (ReDoS) in ua-parser-js ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing it for an extended period of time.	0.7.24+ds-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T22:48:47.674881+00:00	Debian Oval Importer	Affected by	VCID-j1g9-gab7-cbch	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:15:50.810245+00:00	Debian Oval Importer	Affected by	VCID-6c98-q4en-3uek	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T22:25:15.064221+00:00	Debian Oval Importer	Affected by	VCID-j1g9-gab7-cbch	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:59:18.702796+00:00	Debian Oval Importer	Affected by	VCID-6c98-q4en-3uek	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:01:09.182922+00:00	Debian Oval Importer	Affected by	VCID-j1g9-gab7-cbch	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:43:51.600396+00:00	Debian Oval Importer	Affected by	VCID-6c98-q4en-3uek	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0