11 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-3728
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults'...
RHEL 8 : nodejs-hoek (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - hoek: Prototype pollution in utilities function CVE-2018-3728 Note that Nessus has not tested for this issue but ha...
Security Bulletin: A security vulnerability has been identified in Node.js hoek shipped with Data Science Experience Local
Summary Node.js hoek is shipped as a component of Data Science Experience Local. Information about a security vulnerability affecting Node.js hoek has been published in a security bulletin. Vulnerability Details Please consult the security bulletins: CVE-2018-3728 for vulnerability details and...
RHEL 7 : Red Hat Mobile Application Platform 4.6.0 (RHSA-2018:1263)
Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs : OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-too...
Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 release - RPMs
Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs: OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-tool...
Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 Release - Container Images
Red Hat Mobile Application Platform 4.6.0 Release - Container Images Red Hat Mobile Application Platform RHMAP 4.6.0 consists of three main components: Core - development and management of apps occurs in the RHMAP Core, which can be installed either in an on-premise installation of OpenShift...
@aptoma/hapi-grimm-logger (=1.0.0), graphql-io-server (>=0.0.1 <=0.9.63) +8 more potentially affected by CVE-2018-3728 via hoek (>=5.0.0 <=5.0.2)
hoek NPM version =5.0.0, =0.0.1, =1.2.8, =1.0.2, =1.0.19, =2.0.0, =1.0.1, =0.5.0, =1.0.0, =1.0.2 Source cves: CVE-2018-3728 Source advisory: OSV:GHSA-JP4X-W63M-7WGM...
00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +33632 more potentially affected by CVE-2018-3728 via hoek (>=0.0.21 <=4.2.0)
hoek NPM version =0.0.21, =1.0.1, =1.0.4 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 06-tekbooks =0.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl =1.1.0 and more Source cves: CVE-2018-3728 Source advisory:...
CVE-2018-3728
hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults' functions, which allows a malicious user to modify the prototype of "Object" via proto, causing the addition or modification of an existi...
CVE-2018-3728
hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults' functions, which allows a malicious user to modify the prototype of "Object" via proto, causing the addition or modification of an existi...
CVE-2018-3728
CVE-2018-3728 affects the hoek npm package. It is vulnerable to prototype pollution via the merge and applyToDefaults utilities, allowing an attacker to modify Object.prototype through proto and corrupt properties on all objects. Affected versions are hoek before 4.2.0 and 5.0.x before 5.0.3. Rem...