Lucene search

K
osvGoogleOSV:CVE-2020-8125
HistoryFeb 04, 2020 - 8:15 p.m.

CVE-2020-8125

2020-02-0420:15:14
Google
osv.dev
3

7.8 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

Flaw in input validation in npm package klona version 1.1.0 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications using klona.

CPENameOperatorVersion
klonaeq1.0.0
klonaeq1.1.0

7.8 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%