Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-76494
HistoryJun 28, 2022 - 12:00 a.m.

deep-get-set prototype contamination vulnerability

2022-06-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
6

0.003 Low

EPSS

Percentile

68.8%

JSON

deep-get-set is used to set and obtain values on objects via dotted strings. deep-get-set package in all versions suffers from a prototype pollution vulnerability that stems from the vulnerability of products to uncontrolled modification of object prototype properties. An attacker could exploit this vulnerability to override the JavaScript application object prototype.

Related

osv 1
prion 1
nvd 1
veracode 1
cvelist 1
cve 1
github 1
osv
osv
Prototype Pollution in deep-get-set
2022-06-25 00:00:51
prion
prion
Design/Logic Flaw
2022-06-24 20:15:00
nvd
nvd
CVE-2022-21231
2022-06-24 20:15:07
veracode
veracode
Prototype Pollution
2022-06-27 05:41:41
cvelist
cvelist
CVE-2022-21231 Prototype Pollution
2022-06-24 00:00:00
cve
cve
CVE-2022-21231
2022-06-24 20:15:07
github
github
Prototype Pollution in deep-get-set
2022-06-25 00:00:51

0.003 Low

EPSS

Percentile

68.8%

JSON
Related for CNVD-2022-76494
osv1prion1nvd1veracode1cvelist1cve1github1