Lucene search
SnykCVELIST:CVE-2020-28471HistoryJul 25, 2022 - 2:08 p.m.
CVE-2020-28471 Prototype Pollution
2022-07-2514:08:45
snyk
www.cve.org
3
cve-2020-28471
prototype pollution
properties-reader
CVSS3
7.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P
AI Score
9.6
Confidence
High
EPSS
0.003
Percentile
65.3%
This affects the package properties-reader before 2.2.0.
CNA Affected
[
{
"product": "properties-reader",
"vendor": "n/a",
"versions": [
{
"lessThan": "2.2.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
osv
osv
Properties-Reader before v2.2.0 vulnerable to prototype pollution
2022-07-19 14:28:59
CVE-2020-28471
2022-07-25 14:15:09
github
github
Properties-Reader before v2.2.0 vulnerable to prototype pollution
2022-07-19 14:28:59
nvd
nvd
CVE-2020-28471
2022-07-25 14:15:09
cve
cve
CVE-2020-28471
2022-07-25 14:15:09
prion
prion
Design/Logic Flaw
2022-07-25 14:15:00
veracode
veracode
Prototype Pollution
2020-07-13 03:03:30
CVSS3
7.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P
AI Score
9.6
Confidence
High
EPSS
0.003
Percentile
65.3%
Related for CVELIST:CVE-2020-28471