Impact of vulnerablity

Hi ,

we are facing vulnerability on ua-parser-js-0.7.21 which is used in kibana sg 7.8.0-43v CVE-2020-7733. Can you please provide an impact analysis of this vulnerability.

The Search Guard Kibana plugin is not vulnerable as the affected library is only used on the client (browser) side. The mentioned vulnerability is a denial of service vulnerability which can be only exploited if the library would be used on the server side. Attackers would be thus not able to affect the servers.

1 Like

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.