Uap-core Project Uap-core — known CVE vulnerabilities
Every CVE whose affected-product data names Uap-core Project Uap-core, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-5243 — CVSS 5.7 (medium): uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable…
CVE-2021-21317 — CVSS 5.3 (medium): uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. In uap-core before…