Lucene search

Prototype Pollution in deeply

🗓️ 27 Aug 2019 17:33:45Reported by GitHub Advisory DatabaseType

Versions of `deeply` prior to 1.0.1 are vulnerable to Prototype Pollution. Upgrade to version 3.1.0 or later

Reporter	Title	Published	Views	Family All 8
Node.js	Prototype Pollution	28 Jun 201920:09	–	nodejs
Veracode	Prototype Pollution	1 Jul 201907:56	–	veracode
Prion	Design/Logic Flaw	23 Aug 201917:15	–	prion
CVE	CVE-2019-10750	23 Aug 201917:15	–	cve
GithubExploit	Exploit for Uncontrolled Resource Consumption in Deeply Project Deeply	1 Dec 202009:18	–	githubexploit
Cvelist	CVE-2019-10750	23 Aug 201916:50	–	cvelist
OSV	Prototype Pollution in deeply	27 Aug 201917:45	–	osv
NVD	CVE-2019-10750	23 Aug 201917:15	–	nvd

Vulners

Node

deeply_project deeplyRange<3.1.0

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-10750
snyk	www.snyk.io/vuln/SNYK-JS-DEEPLY-451026
npmjs	www.npmjs.com/advisories/1030
github	www.github.com/advisories/GHSA-8j4w-5fw4-rm27

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 Aug 2019 17:45Current

5.4Medium risk

Vulners AI Score5.4

CVSS27.5

CVSS39.8

EPSS0.01331

CWE-400