CVE-2022-4742

🗓️ 26 Dec 2022 08:09:15Reported by [email protected]Type

A critical vulnerability in json-pointer up to version 0.6.1 allows remote attackers to execute prototype pollution by manipulating the set function in index.js, upgrade to version 0.6.2 with patch 859c9984b6c407fc2d5a0a7e47c7274daa681941

Reporter	Title	Published	Views	Family All 11
Cvelist	CVE-2022-4742 json-pointer index.js set prototype pollution	26 Dec 202207:09	–	cvelist
OSV	json-pointer vulnerable to Prototype Pollution	26 Dec 202209:30	–	osv
OSV	CVE-2022-4742	26 Dec 202208:15	–	osv
Prion	Information disclosure	26 Dec 202208:15	–	prion
CVE	CVE-2022-4742	26 Dec 202208:15	–	cve
Github Security Blog	json-pointer vulnerable to Prototype Pollution	26 Dec 202209:30	–	github
Veracode	Prototype Pollution	5 Jan 202307:39	–	veracode
RedhatCVE	CVE-2022-4742	26 Dec 202213:04	–	redhatcve
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Json4j Affects Watson Machine Learning Accelerator	3 Mar 202320:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security QRadar EDR Software has multiple vulnerabilities	14 Mar 202510:49	–	ibm

Nvd

Node

json-pointer_project json-pointerRange<2022-2-17

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/manuelstofer/json-pointer/pull/36
vuldb	www.vuldb.com/
github	www.github.com/manuelstofer/json-pointer/commit/859c9984b6c407fc2d5a0a7e47c7274daa681941

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Dec 2022 08:15Current

CVSS26.5

CVSS39.8

EPSS0.00386

CWE-1321