Lucene search
GoogleOSV:CVE-2021-23329HistoryJan 31, 2021 - 4:15 p.m.
CVE-2021-23329
2021-01-3116:15:12
Google
osv.dev
3
The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nestedobjectassign | eq | 1.0.2-pre | |
| nestedobjectassign | eq | 1.0.1 | |
| nestedobjectassign | eq | 1.0.2 | |
| nestedobjectassign | eq | 1.0.3 |
Related
huntr
huntr
Prototype Pollution in geta/nestedobjectassign
2021-01-28 00:00:00
cvelist
cvelist
CVE-2021-23329 Prototype Pollution
2021-01-31 00:00:00
veracode
veracode
Prototype Pollution
2021-02-01 02:09:21
osv
osv
Prototype pollution in nested-object-assign
2021-02-01 15:01:14
prion
prion
Default credentials
2021-01-31 16:15:00
github
github
Prototype pollution in nested-object-assign
2021-02-01 15:01:14
cve
cve
CVE-2021-23329
2021-01-31 16:15:12
nvd
nvd
CVE-2021-23329
2021-01-31 16:15:12