Lucene search

CVE-2021-25916

🗓️ 16 Mar 2021 16:14:15Reported by MendType

Prototype pollution vulnerability in 'patchmerge' versions 1.0.0 through 1.0.1 allows denial of service and remote code execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	Prototype pollution vulnerability in 'patchmerge'	13 Oct 202115:33	–	osv
OSV	CVE-2021-25916	16 Mar 202116:15	–	osv
Prion	Remote code execution	16 Mar 202116:15	–	prion
Github Security Blog	Prototype pollution vulnerability in 'patchmerge'	13 Oct 202115:33	–	github
Cvelist	CVE-2021-25916	16 Mar 202115:07	–	cvelist
NVD	CVE-2021-25916	16 Mar 202116:15	–	nvd
Veracode	Prototype Pollution	17 Mar 202104:41	–	veracode

Nvd

Node

patchmerge_project patchmergeRange1.0.0–1.0.1node.js

[
  {
    "product": "patchmerge",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.0.0, 1.0.1"
      }
    ]
  }
]

Source	Link
github	www.github.com/pjshumphreys/patchmerge/commit/5b383c537eae7a00ebd26d3f7211dac99ddecb12
whitesourcesoftware	www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25916

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Mar 2021 16:15Current

9.5High risk

Vulners AI Score9.5

CVSS27.5

CVSS39.8

EPSS0.02947

CWE-1321