Lucene search

CVE-2023-26106

🗓️ 06 Mar 2023 05:12:15Reported by snykType

Vulnerability in dot-lens package due to Prototype Pollution

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Veracode	Prototype Pollution	22 Aug 202305:01	–	veracode
Prion	Design/Logic Flaw	6 Mar 202305:15	–	prion
OSV	GHSA-RMHG-2CVV-Q7VX dot-lens vulnerable to Prototype Pollution	6 Mar 202306:30	–	osv
OSV	CVE-2023-26106	6 Mar 202305:15	–	osv
RedhatCVE	CVE-2023-26106	23 May 202504:39	–	redhatcve
Cvelist	CVE-2023-26106	6 Mar 202305:00	–	cvelist
Github Security Blog	dot-lens vulnerable to Prototype Pollution	6 Mar 202306:30	–	github
NVD	CVE-2023-26106	6 Mar 202305:15	–	nvd
Vulnrichment	CVE-2023-26106	6 Mar 202305:00	–	vulnrichment

Nvd

Node

dot-lens_project dot-lensRange≤1.2.3node.js

[
  {
    "product": "dot-lens",
    "versions": [
      {
        "version": "0",
        "lessThan": "*",
        "status": "affected",
        "versionType": "semver"
      }
    ],
    "vendor": "n/a"
  }
]

Source	Link
github	www.github.com/jb55/dot-lens/blob/465ef2088e4065b7be1c4372eedd2215c3820bc4/index.js%23L70
security	www.security.snyk.io/vuln/SNYK-JS-DOTLENS-3227646

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2023 05:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.5

EPSS0.00067

SSVC

CWE-1321