3 matches found
CVE-2024-45277
creationtimestamp| type| source ---|---|--- 2024-10-08 07:01:03+00:00| seen| https://t.me/cvedetector/7304...
@dxfrontier/cds-ts-dispatcher (=2.1.4), @dxfrontier/cds-ts-repository (=1.1.3) +24 more potentially affected by CVE-2024-45277 via @sap/hana-client (>=2.10.13 <=2.21.28)
@sap/hana-client NPM version =2.10.13, =0.1.2, =1.1.1, =0.1.0, =1.0.2, =6.2.0, =2.0.0, =1.0.0, =1.6.0, =1.3.2, =1.1.1, =7.4.0, =4.3.0, =4.9.5 and more Source cves: CVE-2024-45277 Source advisory: OSV:GHSA-6339-GV7W-G5F4...
CVE-2024-45277
The SAP HANA Node.js client package versions 2.0.0 through 2.21.30 are affected by a Prototype Pollution vulnerability caused by improper cleanup of user input when using the nestTables feature. This allows an attacker to add arbitrary properties to global object prototypes, with low impact on av...