Lucene search
PRIOn knowledge basePRION:CVE-2020-36632HistoryDec 25, 2022 - 8:15 p.m.
Design/Logic Flaw
2022-12-2520:15:00
PRIOn knowledge base
www.prio-n.com
4
vulnerability
hughsk flat
prototype pollution
remote attack
upgrade
patch
nvd
vdb-216777
A vulnerability, which was classified as critical, was found in hughsk flat up to 5.0.0. This affects the function unflatten of the file index.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’). It is possible to initiate the attack remotely. Upgrading to version 5.0.1 is able to address this issue. The name of the patch is 20ef0ef55dfa028caddaedbcb33efbdb04d18e13. It is recommended to upgrade the affected component. The identifier VDB-216777 was assigned to this vulnerability.
Related
ubuntucve
ubuntucve
CVE-2020-36632
2022-12-25 00:00:00
veracode
veracode
Prototype Pollution
2023-01-05 08:51:57
osv
osv
flat vulnerable to Prototype Pollution
2022-12-25 21:30:22
CVE-2020-36632
2022-12-25 20:15:25
cvelist
cvelist
CVE-2020-36632 hughsk flat index.js unflatten prototype pollution
2022-12-25 19:37:16
cve
cve
CVE-2020-36632
2022-12-25 20:15:25
nvd
nvd
CVE-2020-36632
2022-12-25 20:15:25
ibm
ibm
github
github
flat vulnerable to Prototype Pollution
2022-12-25 21:30:22