8 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-36604
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function. CVE-2020-36604 Note that Nessus relies on the presence of the package a...
Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring and IntegrationServer operands may be vulnerable to arbitrary code execution due to [CVE-2020-36604]
Summary Node.js module hoek is used by IBM App Connect Enterprise Certified Container Designer connectors. IBM App Connect Enterprise Certified Container DesignerAuthoring and IntegrationServer operands that execute Designer flows may be vulnerable to arbitrary code execution. This bulletin...
CVE-2020-36604
A prototype pollution flaw was found the clone function of the hapi/hoek package. By adding or modifying properties of Object.prototype using a proto or constructor payload, an attacker could execute arbitrary code or cause a denial of service condition on the system...
00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +44450 more potentially affected by CVE-2020-36604 via hoek (>=0.0.21 <=6.1.3)
hoek NPM version =0.0.21, =1.0.1, =1.0.4 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 06-tekbooks =0.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl =1.1.0 and more Source cves: CVE-2020-36604 Source advisory:...
CVE-2020-36604
hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function...
DEBIAN-CVE-2020-36604
hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function...
CVE-2020-36604 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, opensearch-dashboards-fips...
CVE-2020-36604
CVE-2020-36604 affects hoek: older releases (before 8.5.1 and 9.x before 9.0.3) allow prototype poisoning via the clone() function. Update hoek to 8.5.1+ or 9.0.3+ (or newer) to mitigate.