CVE-2022-23496

Name of the Vulnerable Software and Affected Versions Yet Another UserAgent Analyzer (Yauaa) versions 7.0.0 through 7.8.x

Description The Yauaa library can throw an ArrayIndexOutOfBoundsException when analyzing useragent strings, potentially causing applications to crash if the exception is uncaught. This issue affects applications using the Client Hints analysis feature introduced with version 7.0.0. Applications not using this feature are not affected.

Recommendations For versions 7.0.0 through 7.8.x, upgrade to version 7.9.0 to resolve the issue. For users unable to upgrade, catch and discard any ArrayIndexOutOfBoundsException thrown by the Yauaa library as a temporary workaround.