Unknown · Ua-Parser-Js · CVE-2020-7793
**Name of the Vulnerable Software and Affected Versions**
ua-parser-js versions prior to 0.7.23
**Description**
The issue is related to an uncontrolled resource consumption vulnerability in the ua-parser-js library, which can be exploited by a remote attacker to cause a denial of service. The vulnerability is due to Regular Expression Denial of Service (ReDoS) in multiple regexes.
**Recommendations**
For versions prior to 0.7.23, update to version 0.7.23 or later to resolve the issue. As a temporary workaround, consider restricting the use of the vulnerable regexes until a patch is available.