3 matches found
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
CVE-2021-25947
CVE-2021-25947 involves the npm package nestie (versions 0.0.0–1.0.0) and is a prototype pollution vulnerability causing DoS and potential remote code execution. The issue stems from unsafe merging/propagation of proto -related properties, allowing an attacker to pollute Object.prototype. Public ...