Lucene search

CVE-2020-7765

🗓️ 16 Nov 2020 12:14:15Reported by [email protected]Type

Vulnerability in @firebase/util package before version 0.3.4 allows object prototype pollution via user inpu

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2020-7765 Prototype Pollution	16 Nov 202012:00	–	cvelist
Github Security Blog	Uncontrolled Resource Consumption in firebase	18 May 202101:57	–	github
Node.js	Uncontrolled Resource Consumption	18 May 202101:58	–	nodejs
CVE	CVE-2020-7765	16 Nov 202012:15	–	cve
CNVD	Google Firebase Js Sdk prototype contamination vulnerability	17 Nov 202000:00	–	cnvd
Prion	Design/Logic Flaw	16 Nov 202012:15	–	prion
OSV	Uncontrolled Resource Consumption in firebase	18 May 202101:57	–	osv
OSV	CVE-2020-7765	16 Nov 202012:15	–	osv
Veracode	Prototype Pollution	17 Nov 202005:22	–	veracode

Nvd

Node

google firebase/utilRange<0.3.4node.js

Source	Link
github	www.github.com/firebase/firebase-js-sdk/commit/9cf727fcc3d049551b16ae0698ac33dc2fe45ada
snyk	www.snyk.io/vuln/SNYK-JS-FIREBASEUTIL-1038324
github	www.github.com/firebase/firebase-js-sdk/pull/4001

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Nov 2020 12:15Current

5.4Medium risk

Vulners AI Score5.4

CVSS25

CVSS35.3

EPSS0.00169