Lucene search
SnykCVELIST:CVE-2019-10746HistoryAug 23, 2019 - 4:43 p.m.
CVE-2019-10746
2019-08-2316:43:49
snyk
www.cve.org
1
mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.
CNA Affected
[
{
"product": "mixin-deep",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions before 1.3.2 and version 2.0.0."
}
]
}
]References
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFNIVG2XYFPZJY3DYYBJASZ7ZMKBMIJT/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UXRA365KZCUNXMU3KDH5JN5BEPNIGUKC/
snyk.io/vuln/SNYK-JS-MIXINDEEP-450212
www.oracle.com//security-alerts/cpujul2021.html
Related
githubexploit
githubexploit
Exploit for Argument Injection in Mixin-Deep Project Mixin-Deep
2020-12-01 09:18:57
openvas
openvas
Fedora: Security Advisory for nodejs-mixin-deep (FEDORA-2020-4a8f110332)
2020-02-08 00:00:00
Fedora: Security Advisory for nodejs-mixin-deep (FEDORA-2020-f80e5c0d65)
2020-02-08 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: nodejs-mixin-deep-1.3.2-1.fc31
2020-02-08 02:05:18
[SECURITY] Fedora 30 Update: nodejs-mixin-deep-1.3.2-1.fc30
2020-02-08 01:39:51
osv
osv
CVE-2019-10746
2019-08-23 17:15:13
Prototype Pollution in mixin-deep
2019-08-27 17:42:33
Moderate: nodejs:12 security update
2021-02-16 07:34:29
redhatcve
redhatcve
CVE-2019-10746
2020-03-30 08:17:22
debiancve
debiancve
CVE-2019-10746
2019-08-23 17:15:13
cve
cve
CVE-2019-10746
2019-08-23 17:15:13
ubuntucve
ubuntucve
CVE-2019-10746
2019-08-23 00:00:00
nodejs
nodejs
Prototype Pollution
2019-06-20 14:51:39
github
github
Prototype Pollution in mixin-deep
2019-08-27 17:42:33
nessus
nessus
RHEL 8 : nodejs-mixin-deep (Unpatched Vulnerability)
2024-05-11 00:00:00
Fedora 30 : nodejs-mixin-deep (2020-4a8f110332)
2020-02-10 00:00:00
Fedora 31 : nodejs-mixin-deep (2020-f80e5c0d65)
2020-02-10 00:00:00
veracode
veracode
Prototype Pollution
2019-06-21 01:02:58
prion
prion
Design/Logic Flaw
2019-08-23 17:15:00
nvd
nvd
CVE-2019-10746
2019-08-23 17:15:13
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js modules
2020-08-29 08:56:55
Security Bulletin: Multiple vulnerabilities in React, webpack and Node.js modules affect Tivoli Netcool/OMNIbus WebGUI
2022-10-06 04:09:27
Security Bulletin: Cloud Pak for Security contains security vulnerabilities
2021-05-13 21:45:28
oraclelinux
oraclelinux
nodejs:12 security update
2021-02-20 00:00:00
almalinux
almalinux
Moderate: nodejs:12 security update
2021-02-16 07:34:29
redhat
redhat
(RHSA-2021:0549) Moderate: nodejs:12 security update
2021-02-16 07:34:29
(RHSA-2021:0485) Moderate: rh-nodejs12-nodejs security update
2021-02-11 13:08:55
rocky
rocky
nodejs:12 security update
2021-02-16 07:34:29
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00