Lucene search
+L

35 matches found

Cvelist
Cvelist
added 2022/10/28 12:0 a.m.47 views

CVE-2022-37621

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...

9.7AI score0.01032EPSS
Exploits0References3
CVE
CVE
added 2022/10/28 12:0 a.m.71 views

CVE-2022-37621

CVE-2022-37621 affects thlorenz browserify-shim 3.8.15, with a prototype pollution in resolve-shims.js (resolveShims) exploitable via the fullPath variable. Risk details from sources indicate a CRITICAL impact (CVSSv3.1: 9.8) and network access are possible, with no user interaction required. Rem...

9.8CVSS9.4AI score0.01032EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/28 12:0 a.m.6 views

PT-2022-24032 · Unknown · Browserify-Shim

Name of the Vulnerable Software and Affected Versions: browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function, located in resolve-shims.js. This vulnerability is exploitable via the fullPath variable in resolve-shims.js...

9.8CVSS9.1AI score0.01032EPSS
Exploits0References9
OSV
OSV
added 2022/10/28 12:0 a.m.35 views

CVE-2022-37621

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js...

9.8CVSS6.9AI score0.01032EPSS
Exploits0References5
Veracode
Veracode
added 2022/10/19 2:58 a.m.20 views

Prototype Pollution

browserify-shim is vulnerable to prototype pollution. The vulnerability exists due to the separateExposeGlobals function in resolve-shims.js, which doesn’t restrict proto or constructor keys in the supplied shim which allows an attacker to modify object prototypes...

9.8CVSS8.8AI score0.01153EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/10/12 12:0 p.m.26 views

thlorenz browserify-shim vulnerable to prototype pollution

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.8CVSS9.5AI score0.01153EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2022/10/12 12:0 p.m.12 views

GHSA-866W-WM4H-95C6 thlorenz browserify-shim vulnerable to prototype pollution

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.8CVSS9.4AI score0.01153EPSS
Exploits1References7
NVD
NVD
added 2022/10/11 11:15 p.m.30 views

CVE-2022-37617

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.8CVSS0.01153EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/10/11 11:15 p.m.3 views

CVE-2022-37617

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.8CVSS7.3AI score0.01153EPSS
Exploits1References4
Prion
Prion
added 2022/10/11 11:15 p.m.11 views

Code injection

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

7.5CVSS9.3AI score0.01153EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/11 12:0 a.m.6 views

PT-2022-24029 · Thlorenz · Browserify-Shim

Name of the Vulnerable Software and Affected Versions: thlorenz browserify-shim version 3.8.15 Description: The issue is related to a prototype pollution vulnerability in the resolveShims function within the resolve-shims.js file of thlorenz browserify-shim. This vulnerability is exploited via th...

9.8CVSS9.2AI score0.01153EPSS
Exploits1References10
CVE
CVE
added 2022/10/11 12:0 a.m.61 views

CVE-2022-37617

Prototype pollution in thlorenz browserify-shim 3.8.15, due to the k variable handling in resolve-shims.js (resolveShims function). Connected sources list this as a vulnerability in the browserify-shim package, with the issue affecting resolution logic in resolve-shims.js and enabling potential p...

9.8CVSS9.4AI score0.01153EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/10/11 12:0 a.m.4 views

browserify-shim 安全漏洞

browserify-shim is used by thlorenz individual developers to make CommonJS incompatible files browsable. A security vulnerability exists in browserify-shim version 3.8.15, which stems from a prototype contamination vulnerability found in the resolveShims function...

9.8CVSS8.2AI score0.01153EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.40 views

CVE-2022-37617

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.7AI score0.01153EPSS
Exploits1References3
OSV
OSV
added 2022/10/11 12:0 a.m.12 views

CVE-2022-37617

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js...

9.8CVSS6.9AI score0.01153EPSS
Exploits1References5
Rows per page
Query Builder