CVE-2020-36632

🗓️ 25 Dec 2022 20:25:15Reported by VulDBType

Vulnerability in hughsk flat 5.0.0: 'prototype pollution', CVE-2020-3663

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 12
OSV	GHSA-2J2X-2GPW-G8FM flat vulnerable to Prototype Pollution	25 Dec 202221:30	–	osv
OSV	CVE-2020-36632	25 Dec 202220:15	–	osv
OSV	UBUNTU-CVE-2020-36632	25 Dec 202220:15	–	osv
UbuntuCve	CVE-2020-36632	25 Dec 202200:00	–	ubuntucve
Veracode	Prototype Pollution	5 Jan 202308:51	–	veracode
Prion	Design/Logic Flaw	25 Dec 202220:15	–	prion
Cvelist	CVE-2020-36632 hughsk flat index.js unflatten prototype pollution	25 Dec 202219:37	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to arbitrary code execution due to [CVE-2020-36632]	9 Jan 202311:51	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	24 Feb 202319:49	–	ibm
NVD	CVE-2020-36632	25 Dec 202220:15	–	nvd

Nvd

Vulners

Node

flat_project flatRange<5.0.1

[
  {
    "vendor": "hughsk",
    "product": "flat",
    "versions": [
      {
        "version": "5.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/hughsk/flat/issues/105
github	www.github.com/hughsk/flat/commit/20ef0ef55dfa028caddaedbcb33efbdb04d18e13
github	www.github.com/hughsk/flat/pull/106
github	www.github.com/hughsk/flat/releases/tag/5.0.1
vuldb	www.vuldb.com/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Dec 2022 20:15Current

7.8High risk

Vulners AI Score7.8

CVSS36.3 - 9.8

EPSS0.00355

CWE-1321