Linux Distros Unpatched Vulnerability : CVE-2020-7746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existi...

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to denial of service due to Chart.js (CVE-2020-7746)

Summary The chart.js module is shipped with IBM Tivoli Netcool Impact as part of the probable cause feature. Information about a security vulnerability affecting chart.js has been published in a security bulletin. Vulnerability Details CVEID:CVE-2020-7746 DESCRIPTION: Node.js chart.js moudle is...

Prototype pollution in chart.js

Overview In chart.js before version 2.9.4 the options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being set ar...

2cs-basecode (>=0.1.0 <=0.1.1), 8bit-ghost-ui (>=1.0.0-beta.1 <=1.0.0-beta.3) +448 more potentially affected by CVE-2020-7746 via chart.js (>=1.0.1-beta.2 <=2.9.3)

chart.js NPM version =1.0.1-beta.2, =0.1.0, =1.0.0-beta.1, =1.0.3, =1.0.0, =2.0.0, =2.0.0, =2.0.0-0f0f22634a7788f0af51de445431d067b20eec64, =2.0.0, =1.0.0, =7.0.1, =0.0.1-alpha.3, =0.0.1-alpha.3, =0.7.0, =0.8.0 - @cedrictrovati/spfx-controls-react-loc =1.0.0 and more Source cves: CVE-2020-7746...

Security Bulletin: Denial of Service Vulnerability in Chart.js affects IBM Spectrum Protect Plus (CVE-2020-7746)

Summary The Node.js chart.js module is vulnerable to a denial of service which may affect IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2020-7746 DESCRIPTION: Node.js chart.js moudle is vulnerable to a denial of service, caused by a prototype pollution flaw when processing the optio...

CVE-2020-7746

creationtimestamp| type| source ---|---|--- 2020-10-29 11:33:58+00:00| seen| https://t.me/cibsecurity/15708...

DEBIAN-CVE-2020-7746

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being...

CVE-2020-7746

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being...

CVE-2020-7746

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being...

CVE-2020-7746 Prototype Pollution

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being...

2cs-basecode (>=0.1.0 <=0.1.1), 8bit-ghost-ui (>=1.0.0-beta.1 <=1.0.0-beta.3) +345 more potentially affected by CVE-2020-7746 via chart.js (>=2.0.0 <=2.9.3)

chart.js NPM version =2.0.0, =0.1.0, =1.0.0-beta.1, =1.0.3, =1.0.0, =2.0.0, =2.0.0, =2.0.0-0f0f22634a7788f0af51de445431d067b20eec64, =2.0.0, =1.0.0, =7.0.1, =0.0.1-alpha.3, =0.0.1-alpha.3, =0.7.0, =1.0.0, =1.0.36 and more Source cves: CVE-2020-7746 Source advisory: SNYK:JS-CHARTJS-1018716...