Lucene search

CVE-2018-3750

🗓️ 03 Jul 2018 21:00:29Reported by [email protected]Type

The deep-extend node module <= 0.5.0 allows attackers to modify Object prototyp

Reporter	Title	Published	Views	Family All 33
Veracode	Prototype Pollution	16 Apr 201802:44	–	veracode
Tenable Nessus	RHEL 8 : nodejs-deep-extend (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 8 : 10_nodejs-nodemon (Unpatched Vulnerability)	3 Jun 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2018-3750	4 Mar 202500:00	–	nessus
Tenable Nessus	Fedora 28 : nodejs-deep-extend (2018-636f73964f)	3 Jan 201900:00	–	nessus
Tenable Nessus	RHEL 7 : rh-nodejs12-nodejs (RHSA-2021:0485)	15 Sep 202200:00	–	nessus
Tenable Nessus	RHEL 8 : nodejs:12 (RHSA-2021:0549)	16 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 8 : nodejs:12 (CESA-2021:0549)	11 Mar 202100:00	–	nessus
Tenable Nessus	RHEL 7 : rh-nodejs8-nodejs (RHSA-2020:2625)	23 Jan 202300:00	–	nessus
Tenable Nessus	Rocky Linux 8 : nodejs:12 (RLSA-2021:0549)	7 Nov 202300:00	–	nessus

Nvd

Node

deep_extend_project deep_extendRange≤0.5.0node.js

Source	Link
hackerone	www.hackerone.com/reports/311333

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jul 2018 21:29Current

9.4High risk

Vulners AI Score9.4

CVSS27.5

CVSS39.8

EPSS0.00375

CWE-20