Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

MitreCVELIST:CVE-2021-44906

HistoryMar 17, 2022 - 1:05 p.m.

CVE-2021-44906

Vulners
Cvelist
CVE-2021-44906

2022-03-1713:05:57

mitre

www.cve.org

9.7 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

JSON

Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).

References

github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip

github.com/substack/minimist/blob/master/index.js#L69

github.com/substack/minimist/issues/164

security.netapp.com/advisory/ntap-20240621-0006/

snyk.io/vuln/SNYK-JS-MINIMIST-559764

stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068

ubuntucve 1

prion 1

ibm 22

debiancve 1

redos 1

veracode 1

nessus 34

githubexploit 1

cve 1

osv 7

mageia 1

openvas 10

nvd 1

github 1

redhatcve 1

thn 1

suse 4

redhat 21

rocky 3

oraclelinux 3

almalinux 3

checkpoint_advisories 1

ubuntucve

CVE-2021-44906

2022-03-17 00:00:00

prion

Code injection

2022-03-17 16:15:00

ibm

Security Bulletin: IBM Cognos Analytics has addressed a vulnerability (CVE-2021-44906)

2023-07-27 21:13:11

Security Bulletin: Open Source Dependency Vulnerability

2023-05-15 17:14:54

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus are vulnerable to arbitrary code execution due to node.js minimist module ( CVE-2021-44906)

2022-07-28 14:43:54

debiancve

CVE-2021-44906

2022-03-17 16:15:07

redos

ROS-20240507-05

2024-05-07 00:00:00

veracode

Prototype Pollution

2022-03-18 02:42:04

nessus

CentOS 9 : nodejs-nodemon-2.0.20-2.el9

2024-02-29 00:00:00

RHEL 8 : minimist (Unpatched Vulnerability)

2024-05-11 00:00:00

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.6 Security update (Moderate) (RHSA-2022:5892)

2022-08-04 00:00:00

githubexploit

Exploit for Prototype Pollution in Substack Minimist

2023-10-02 15:20:35

cve

CVE-2021-44906

2022-03-17 16:15:07

osv

Prototype Pollution in minimist

2022-03-18 00:01:09

Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

2023-01-23 14:30:11

Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

2023-01-23 00:00:00

mageia

Updated nodejs-minimist packages fix security vulnerability

2023-02-07 03:06:39

openvas

Mageia: Security Advisory (MGASA-2023-0035)

2023-03-28 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:1466-1)

2022-04-29 00:00:00

openSUSE: Security Advisory for nodejs8 (SUSE-SU-2022:1694-1)

2022-05-17 00:00:00

nvd

CVE-2021-44906

2022-03-17 16:15:07

github

Prototype Pollution in minimist

2022-03-18 00:01:09

redhatcve

CVE-2021-44906

2022-03-19 23:40:42

thn

Solving the indirect vulnerability enigma - fixing indirect vulnerabilities without breaking your dependency tree

2022-07-01 09:45:00

suse

Security update for nodejs8 (moderate)

2022-05-17 00:00:00

Security update for nodejs12 (important)

2022-04-28 00:00:00

Security update for nodejs14 (important)

2022-04-28 00:00:00

redhat

(RHSA-2022:5928) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.6 Security update

2022-08-08 19:39:55

(RHSA-2022:5893) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.6 Security update

2022-08-03 15:36:29

(RHSA-2022:5892) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.6 Security update

2022-08-03 15:36:19

rocky

nodejs and nodejs-nodemon security, bug fix, and enhancement update

2023-01-23 14:30:11

nodejs:14 security, bug fix, and enhancement update

2023-01-09 14:24:14

nodejs:16 security, bug fix, and enhancement update

2022-12-15 15:42:25

oraclelinux

nodejs and nodejs-nodemon security, bug fix, and enhancement update

2023-01-24 00:00:00

nodejs:14 security, bug fix, and enhancement update

2023-01-09 00:00:00

nodejs:16 security, bug fix, and enhancement update

2022-12-16 00:00:00

almalinux

Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

2023-01-23 00:00:00

Moderate: nodejs:14 security, bug fix, and enhancement update

2023-01-09 00:00:00

Moderate: nodejs:16 security, bug fix, and enhancement update

2022-12-15 00:00:00

checkpoint_advisories

JavaScript Prototype Pollution (CVE-2020-28269; CVE-2020-28272; CVE-2020-28273; CVE-2020-28442; CVE-2020-28458; CVE-2020-28472; CVE-2020-7778; CVE-2020-8158; CVE-2020-8203; CVE-2021-25912; CVE-2021-44906)

2020-06-21 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

9.7 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

JSON

Related for CVELIST:CVE-2021-44906