Lucene search
SnykCVELIST:CVE-2020-7608HistoryMar 16, 2020 - 7:49 p.m.
CVE-2020-7608
2020-03-1619:49:49
snyk
www.cve.org
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a “proto” payload.
CNA Affected
[
{
"product": "yargs-parser",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions prior to version 18.1.1 and patches at 13.1.2 and 15.0.1"
}
]
}
]References
Related
redhatcve
redhatcve
CVE-2020-7608
2020-05-26 09:55:48
nvd
nvd
CVE-2020-7608
2020-03-16 20:15:12
github
github
yargs-parser Vulnerable to Prototype Pollution
2020-09-04 18:00:54
debiancve
debiancve
CVE-2020-7608
2020-03-16 20:15:12
mageia
mageia
Updated nodejs-yargs-parser packages fix security vulnerability
2021-04-02 23:25:05
veracode
veracode
Prototype Pollution
2020-03-17 04:41:36
cve
cve
CVE-2020-7608
2020-03-16 20:15:12
osv
osv
CVE-2020-7608
2020-03-16 20:15:12
yargs-parser Vulnerable to Prototype Pollution
2020-09-04 18:00:54
Moderate: nodejs:12 security and bug fix update
2020-12-15 16:03:21
ubuntucve
ubuntucve
CVE-2020-7608
2020-03-16 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0170)
2022-01-28 00:00:00
ibm
ibm
prion
prion
Design/Logic Flaw
2020-03-16 20:15:00
rocky
rocky
nodejs:12 security and bug fix update
2020-12-15 16:03:21
nodejs:10 security update
2021-02-16 07:34:15
nessus
nessus
CentOS 8 : nodejs:12 (CESA-2020:5499)
2021-02-01 00:00:00
Rocky Linux 8 : nodejs:12 (RLSA-2020:5499)
2023-11-06 00:00:00
RHEL 8 : nodejs:12 (RHSA-2020:5499)
2020-12-18 00:00:00
redhat
redhat
(RHSA-2020:5305) Moderate: rh-nodejs12-nodejs security update
2020-12-01 14:18:32
(RHSA-2020:5499) Moderate: nodejs:12 security and bug fix update
2020-12-15 16:03:21
(RHSA-2021:0521) Moderate: rh-nodejs10-nodejs security update
2021-02-15 17:53:40
oraclelinux
oraclelinux
nodejs:10 security update
2021-02-20 00:00:00
almalinux
almalinux
Moderate: nodejs:10 security update
2021-02-16 07:34:15