Lucene search
HistoryApr 24, 2023 - 8:15 a.m.
CVE-2023-30533
sheetjs
community edition
0.19.3
cve-2023-30533
prototype pollution
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.6%
SheetJS Community Edition before 0.19.3 allows Prototype Pollution via a crafted file. In other words. 0.19.2 and earlier are affected, whereas 0.19.3 and later are unaffected.
Affected configurations
Node
sheetjssheetjsRange<0.19.3node.js
Related
veracode
veracode
Prototype Pollution
2023-04-27 11:25:48
github
github
Prototype Pollution in sheetJS
2023-04-24 09:30:19
cve
cve
CVE-2023-30533
2023-04-24 08:15:07
osv
osv
Prototype Pollution in sheetJS
2023-04-24 09:30:19
prion
prion
Code injection
2023-04-24 08:15:00
cvelist
cvelist
CVE-2023-30533
2023-04-24 00:00:00
githubexploit
githubexploit
Exploit for Prototype Pollution in Sheetjs
2023-08-09 06:48:32
nessus
nessus
Oracle Database Server (Jul 2023 CPU)
2023-07-19 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.6%
Related for NVD:CVE-2023-30533