Is the Scandit SDK for the Web affected by the ua-parser-js security vulnerability? – Frequently Asked Questions (FAQ)

No, the Scandit WebSDK was not affected at any time by the vulnerability:

https://github.com/advisories/GHSA-pjwm-rvh2-c87w

Only unaffected versions have been used:

WebSDK 5.8.1 and lower were using version 0.7.28 of ua-parser-js.

WebSDK 5.8.2 was updated to version 1.0.1. of ua-parser-js.

The affected versions (0.7.29, 0.8.0, and 1.0.0) of ua-parser-js were never used by Scandit SDK for the Web at any time and the use of the WebSDK did therefore not introduce any security issues related to the above referenced ua-parser-js issue.

In case you have any questions or concerns, please submit a request.

Was this article helpful?

Related articles