Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-3728

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults'...

8.8CVSS6.8AI score0.04226EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 8 : nodejs-hoek (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - hoek: Prototype pollution in utilities function CVE-2018-3728 Note that Nessus has not tested for this issue but ha...

8.8CVSS8.7AI score0.04226EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/08/07 7:52 p.m.34 views

Security Bulletin: A security vulnerability has been identified in Node.js hoek shipped with Data Science Experience Local

Summary Node.js hoek is shipped as a component of Data Science Experience Local. Information about a security vulnerability affecting Node.js hoek has been published in a security bulletin. Vulnerability Details Please consult the security bulletins: CVE-2018-3728 for vulnerability details and...

8.8CVSS1.6AI score0.04226EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/05/04 12:0 a.m.60 views

RHEL 7 : Red Hat Mobile Application Platform 4.6.0 (RHSA-2018:1263)

Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs : OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-too...

8.8CVSS6.6AI score0.04226EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2018/04/30 6:41 p.m.34 views

Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 release - RPMs

Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs: OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-tool...

8.8CVSS6.7AI score0.04226EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2018/04/30 6:12 p.m.53 views

Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 Release - Container Images

Red Hat Mobile Application Platform 4.6.0 Release - Container Images Red Hat Mobile Application Platform RHMAP 4.6.0 consists of three main components: Core - development and management of apps occurs in the RHMAP Core, which can be installed either in an on-premise installation of OpenShift...

8.8CVSS6.7AI score0.04226EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2018/04/26 3:25 p.m.6 views

@aptoma/hapi-grimm-logger (=1.0.0), graphql-io-server (>=0.0.1 <=0.9.63) +8 more potentially affected by CVE-2018-3728 via hoek (>=5.0.0 <=5.0.2)

hoek NPM version =5.0.0, =0.0.1, =1.2.8, =1.0.2, =1.0.19, =2.0.0, =1.0.1, =0.5.0, =1.0.0, =1.0.2 Source cves: CVE-2018-3728 Source advisory: OSV:GHSA-JP4X-W63M-7WGM...

8.8CVSS6.7AI score0.04226EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2018/04/26 3:25 p.m.6 views

00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +33632 more potentially affected by CVE-2018-3728 via hoek (>=0.0.21 <=4.2.0)

hoek NPM version =0.0.21, =1.0.1, =1.0.4 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 06-tekbooks =0.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl =1.1.0 and more Source cves: CVE-2018-3728 Source advisory:...

8.8CVSS6.7AI score0.04226EPSS
Exploits1
NVD
NVD
added 2018/03/30 7:29 p.m.18 views

CVE-2018-3728

hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults' functions, which allows a malicious user to modify the prototype of "Object" via proto, causing the addition or modification of an existi...

8.8CVSS8.6AI score0.04226EPSS
Exploits1References7
OSV
OSV
added 2018/03/30 7:29 p.m.29 views

CVE-2018-3728

hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults' functions, which allows a malicious user to modify the prototype of "Object" via proto, causing the addition or modification of an existi...

8.8CVSS8.8AI score
Exploits0References7
CVE
CVE
added 2018/03/30 7:0 p.m.128 views

CVE-2018-3728

CVE-2018-3728 affects the hoek npm package. It is vulnerable to prototype pollution via the merge and applyToDefaults utilities, allowing an attacker to modify Object.prototype through proto and corrupt properties on all objects. Affected versions are hoek before 4.2.0 and 5.0.x before 5.0.3. Rem...

8.8CVSS8.4AI score0.04226EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder