Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/ua-parser-js@0.7.21
purl pkg:npm/ua-parser-js@0.7.21
Next non-vulnerable version 0.7.24
Latest non-vulnerable version 1.0.33
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-6c98-q4en-3uek
Aliases:
CVE-2020-7793
GHSA-394c-5j6w-4xmx
ua-parser-js Regular Expression Denial of Service vulnerability The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).
0.7.23
Affected by 1 other vulnerability.
VCID-j1g9-gab7-cbch
Aliases:
CVE-2021-27292
GHSA-78cj-fxph-m83p
Regular Expression Denial of Service (ReDoS) in ua-parser-js ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing it for an extended period of time.
0.7.24
Affected by 0 other vulnerabilities.
VCID-q32y-yvrx-wkby
Aliases:
CVE-2020-7733
GHSA-662x-fhqg-9p8v
Regular Expression Denial of Service in ua-parser-js The package ua-parser-js before 0.7.22 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex for Redmi Phones and Mi Pad Tablets UA.
0.7.22
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:18:57.535679+00:00 GitLab Importer Affected by VCID-j1g9-gab7-cbch https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2021-27292.yml 38.4.0
2026-04-16T21:15:05.396147+00:00 GitLab Importer Affected by VCID-6c98-q4en-3uek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7793.yml 38.4.0
2026-04-16T21:11:56.629931+00:00 GitLab Importer Affected by VCID-q32y-yvrx-wkby https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7733.yml 38.4.0
2026-04-11T22:31:14.419210+00:00 GitLab Importer Affected by VCID-j1g9-gab7-cbch https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2021-27292.yml 38.3.0
2026-04-11T22:27:13.383891+00:00 GitLab Importer Affected by VCID-6c98-q4en-3uek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7793.yml 38.3.0
2026-04-11T22:23:52.258983+00:00 GitLab Importer Affected by VCID-q32y-yvrx-wkby https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7733.yml 38.3.0
2026-04-02T22:42:37.299788+00:00 GitLab Importer Affected by VCID-j1g9-gab7-cbch https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2021-27292.yml 38.1.0
2026-04-02T22:38:55.019662+00:00 GitLab Importer Affected by VCID-6c98-q4en-3uek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7793.yml 38.1.0
2026-04-02T22:35:50.173552+00:00 GitLab Importer Affected by VCID-q32y-yvrx-wkby https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7733.yml 38.1.0
2026-04-01T17:00:18.625658+00:00 GitLab Importer Affected by VCID-j1g9-gab7-cbch https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2021-27292.yml 38.0.0
2026-04-01T16:56:19.471774+00:00 GitLab Importer Affected by VCID-6c98-q4en-3uek https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7793.yml 38.0.0
2026-04-01T16:53:04.727164+00:00 GitLab Importer Affected by VCID-q32y-yvrx-wkby https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ua-parser-js/CVE-2020-7733.yml 38.0.0