Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
UAParser.js Inclusion of Functionality from Untrusted Control Sphere Vulnerability - CVE-2021-4229 - Vulnerability Database
UAParser.js

UAParser.js Inclusion of Functionality from Untrusted Control Sphere Vulnerability - CVE-2021-4229

High
Reference: CVE-2021-4229
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-4229
Title: UAParser.js Inclusion of Functionality from Untrusted Control Sphere Vulnerability
Overview:

A vulnerability was found in ua-parser-js 0.7.29/0.8.0/1.0.0. It has been rated as critical. This issue affects the crypto mining component which introduces a backdoor. Upgrading to version 0.7.30 0.8.1 and 1.0.1 is able to address this issue. It is recommended to upgrade the affected component.