VulnerableCode Package Details - pkg:pypi/ua-parser@0.9.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/ua-parser@0.9.0

Essentials
History (1)

purl	pkg:pypi/ua-parser@0.9.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-bmy5-zb8a-pqd8	ReDoS The programming library UA-Parser uses regular expressions to identify user agent strings. The complexity of the regular expressions is such that an attacker can craft special patterns that keep the server busy for a long time. By sending many requests in short order, an attacker can exhaust the amount of processing power available.	CVE-2018-20164 GHSA-fx7m-j728-mjw3

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:38:52.818427+00:00	GitLab Importer	Fixing	VCID-bmy5-zb8a-pqd8	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ua-parser/CVE-2018-20164.yml	38.6.0