Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/22 8:21 a.m.9 views

CVE-2019-10794

All versions of component-flatten are vulnerable to Prototype Pollution. The a function could be tricked into adding or modifying properties of Object.prototype using a proto payload...

6.5CVSS6.8AI score0.00726EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2022/05/24 5:9 p.m.4 views

byways (>=1.2.0 <=1.5.2), component-build (>=1.0.0 <=1.2.2) +17 more potentially affected by CVE-2019-10794 via component-flatten (>=0.0.1 <=1.0.1)

component-flatten NPM version =0.0.1, =1.2.0, =1.0.0, =1.0.0, =1.3.0, =0.0.3, =0.1.0, =1.0.0, =1.0.0, =0.2.0, =1.0.0, =1.2.0, =0.0.1, =0.0.1, =0.0.4 - faiton-builder =1.1.10 and more Source cves: CVE-2019-10794 Source advisory: OSV:GHSA-G6R3-HHG9-QF58...

6.5CVSS6.5AI score0.00726EPSS
Exploits0
ibm
ibm
added 2020/06/11 4:21 p.m.28 views

Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities

Summary IBM Event Streams is affected by the following vulnerabilities in the included Node.js runtime shipped. Vulnerability Details CVEID: CVE-2019-10795 DESCRIPTION: Node.js undefsafe module could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a...

10CVSS2.1AI score0.03799EPSS
Exploits7Affected Software1
nvd
nvd
added 2020/02/18 4:15 p.m.17 views

CVE-2019-10794

All versions of component-flatten are vulnerable to Prototype Pollution. The a function could be tricked into adding or modifying properties of Object.prototype using a proto payload...

6.5CVSS6.3AI score0.00726EPSS
Exploits0References1
cve
cve
added 2020/02/18 3:32 p.m.52 views

CVE-2019-10794

CVE-2019-10794 affects component-flatten, where all versions are vulnerable to prototype pollution via a proto payload. The flaw enables an attacker to trick the program into adding or modifying properties on Object.prototype, with consequences including potential arbitrary code execution as desc...

6.5CVSS6.4AI score0.00726EPSS
Exploits0References1Affected Software1
vulnersosv
vulnersosv
added 2020/02/17 3:34 p.m.3 views

byways (>=1.2.0 <=1.5.2), component-build (>=1.0.0 <=1.2.2) +17 more potentially affected by CVE-2019-10794 via component-flatten (>=0.0.1 <=1.0.1)

component-flatten NPM version =0.0.1, =1.2.0, =1.0.0, =1.0.0, =1.3.0, =0.0.3, =0.1.0, =1.0.0, =1.0.0, =0.2.0, =1.0.0, =1.2.0, =0.0.1, =0.0.1, =0.0.4 - faiton-builder =1.1.10 and more Source cves: CVE-2019-10794 Source advisory: SNYK:JS-COMPONENTFLATTEN-548907...

6.5CVSS6.5AI score0.00726EPSS
Exploits0
Rows per page
Query Builder