Lucene search
Gentoo FoundationMGASA-2021-0170HistoryApr 02, 2021 - 11:25 p.m.
Updated nodejs-yargs-parser packages fix security vulnerability
2021-04-0223:25:05
Gentoo Foundation
advisories.mageia.org
69
0.0004 Low
EPSS
Percentile
12.4%
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a “proto” payload (CVE-2020-7608).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | nodejs-yargs-parser | < 10.0.0-3.1 | nodejs-yargs-parser-10.0.0-3.1.mga7 |
References
Related
redhatcve
redhatcve
CVE-2020-7608
2020-05-26 09:55:48
github
github
yargs-parser Vulnerable to Prototype Pollution
2020-09-04 18:00:54
ubuntucve
ubuntucve
CVE-2020-7608
2020-03-16 00:00:00
ibm
ibm
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0170)
2022-01-28 00:00:00
osv
osv
CVE-2020-7608
2020-03-16 20:15:12
yargs-parser Vulnerable to Prototype Pollution
2020-09-04 18:00:54
Moderate: nodejs:12 security and bug fix update
2020-12-15 16:03:21
veracode
veracode
Prototype Pollution
2020-03-17 04:41:36
cvelist
cvelist
CVE-2020-7608
2020-03-16 19:49:49
cve
cve
CVE-2020-7608
2020-03-16 20:15:00
debiancve
debiancve
CVE-2020-7608
2020-03-16 20:15:00
prion
prion
Design/Logic Flaw
2020-03-16 20:15:00
nessus
nessus
Rocky Linux 8 : nodejs:12 (RLSA-2020:5499)
2023-11-06 00:00:00
CentOS 8 : nodejs:12 (CESA-2020:5499)
2021-02-01 00:00:00
RHEL 8 : nodejs:12 (RHSA-2020:5499)
2020-12-18 00:00:00
rocky
rocky
nodejs:12 security and bug fix update
2020-12-15 16:03:21
nodejs:10 security update
2021-02-16 07:34:15
redhat
redhat
(RHSA-2020:5305) Moderate: rh-nodejs12-nodejs security update
2020-12-01 14:18:32
(RHSA-2020:5499) Moderate: nodejs:12 security and bug fix update
2020-12-15 16:03:21
(RHSA-2021:0521) Moderate: rh-nodejs10-nodejs security update
2021-02-15 17:53:40
oraclelinux
oraclelinux
nodejs:10 security update
2021-02-20 00:00:00
almalinux
almalinux
Moderate: nodejs:10 security update
2021-02-16 07:34:15