Lucene search

CVE-2020-28267

🗓️ 10 Nov 2020 16:14:15Reported by MendType

Prototype pollution vuln in '@strikeentco/set' v1.0.0, allows DoS & remote code execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2020-28267	10 Nov 202015:58	–	cvelist
OSV	CVE-2020-28267	10 Nov 202016:15	–	osv
OSV	Prototype pollution in @strikeentco/set	24 May 202217:34	–	osv
Veracode	Prototype Pollution	11 Nov 202004:55	–	veracode
Prion	Remote code execution	10 Nov 202016:15	–	prion
NVD	CVE-2020-28267	10 Nov 202016:15	–	nvd
Github Security Blog	Prototype pollution in @strikeentco/set	24 May 202217:34	–	github

Nvd

Node

set_project setMatch1.0.0node.js

[
  {
    "product": "@strikeentco/set",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.0.0"
      }
    ]
  }
]

Source	Link
whitesourcesoftware	www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28267
github	www.github.com/strikeentco/set/commit/102cc6b2e1d1e0c928ced87e75df759d5541ff60

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Nov 2020 16:15Current

7.8High risk

Vulners AI Score7.8

CVSS25

CVSS37.5

EPSS0.01927