Lucene search

K

CVE-2020-28274

🗓️ 08 Dec 2020 22:18:15Reported by MendType 
cve
 cve
🔗 web.nvd.nist.gov👁 30 Views

Prototype pollution vulnerability in 'deepref' versions 1.1.1 through 1.2.1 allows attacker to cause a denial of service and may lead to remote code execution

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Github Security Blog
Prototype pollution vulnerability in 'deepref'
12 Oct 202116:27
github
Prion
Remote code execution
8 Dec 202022:15
prion
Veracode
Prototype Pollution
9 Dec 202006:58
veracode
OSV
Prototype pollution vulnerability in 'deepref'
12 Oct 202116:27
osv
NVD
CVE-2020-28274
8 Dec 202022:15
nvd
Cvelist
CVE-2020-28274
8 Dec 202021:28
cvelist
Nvd
Node
deepref_projectdeeprefRange1.1.11.2.1node.js
[
  {
    "product": "deepref",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.1.1, 1.1.2, 1.2.0, 1.2.1"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
08 Dec 2020 22:15Current
9.5High risk
Vulners AI Score9.5
CVSS27.5
CVSS39.8
EPSS0.014
30
.json
Report