PT-2024-40154 — DoS in Unknown Ua-Parser/Uap-Php

PT-2024-40154 · Unknown · Ua-Parser/Uap-Php

Published

2024-06-07

Updated

2024-06-07

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions: ua-parser/uap-php versions prior to 3.8.0

Description: A regex expression in the software could lead to a ReDoS issue, which is related to regular expression denial of service. This occurs when an attacker sends a specially crafted input that causes the regular expression engine to take an excessively long time to process, leading to a denial of service.

Recommendations: For versions prior to 3.8.0, update to version 3.8.0 or later to resolve the issue.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1333

Related Identifiers

GHSA-78HM-5HJW-58MH

Affected Products

Ua-Parser/Uap-Php

PT-2024-40154 · Unknown · Ua-Parser/Uap-Php

Weakness Enumeration

Related Identifiers

Affected Products

References · 6