Lucene search
PRIOn knowledge basePRION:CVE-2020-7743HistoryOct 13, 2020 - 10:15 a.m.
Default configuration
2020-10-1310:15:00
PRIOn knowledge base
www.prio-n.com
1
The package mathjs before 7.5.1 are vulnerable to Prototype Pollution via the deepExtend function that runs upon configuration updates.
References
github.com/josdejong/mathjs/blob/develop/src/utils/object.js%23L82
github.com/josdejong/mathjs/commit/ecb80514e80bce4e6ec7e71db8ff79954f07c57e
snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1017113
snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1017112
snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1017111
snyk.io/vuln/SNYK-JS-MATHJS-1016401
Related
cvelist
cvelist
CVE-2020-7743 Prototype Pollution
2020-10-13 00:00:00
osv
osv
Prototype Pollution in mathjs
2021-05-10 18:39:04
CVE-2020-7743
2020-10-13 10:15:13
veracode
veracode
Prototype Pollution
2020-10-14 02:24:54
redhatcve
redhatcve
CVE-2020-7743
2020-10-13 20:20:23
nodejs
nodejs
Prototype Pollution
2021-05-10 18:40:30
github
github
Prototype Pollution in mathjs
2021-05-10 18:39:04
nvd
nvd
CVE-2020-7743
2020-10-13 10:15:13
cve
cve
CVE-2020-7743
2020-10-13 10:15:13
redhat
redhat