Lucene search
+L

5 matches found

vulnersOsv
vulnersOsv
added 2022/06/25 12:0 a.m.5 views

@draadnl/openstad-cms (>=0.12.2 <=0.12.3), @ngodn/apostrophe (>=2.94.2 <=2.94.7) +38 more potentially affected by CVE-2022-21231 via deep-get-set (>=0.1.1 <=1.1.1)

deep-get-set NPM version =0.1.1, =0.12.2, =2.94.2, =1.3.0, =0.0.1, =0.5.235, =2.94.1, =0.5.0, =0.5.0, =1.0.0, =0.0.1, =0.0.1, =0.0.1, =2.93.0, =2.93.2 and more Source cves: CVE-2022-21231 Source advisory: OSV:GHSA-MJJJ-6P43-VHHV...

9.8CVSS7.2AI score0.01313EPSS
Exploits1
NVD
NVD
added 2022/06/24 8:15 p.m.31 views

CVE-2022-21231

All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. Note: This vulnerability derives from an incomplete fix of CVE-2020-7715...

9.8CVSS0.01313EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/24 8:0 p.m.46 views

CVE-2022-21231 Prototype Pollution

All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. Note: This vulnerability derives from an incomplete fix of CVE-2020-7715...

7.5CVSS9.8AI score0.01313EPSS
Exploits1References1
CVE
CVE
added 2022/06/24 8:0 p.m.68 views

CVE-2022-21231

CVE-2022-21231 affects the deep-get-set package; all versions are vulnerable to prototype pollution via the deep function. The vulnerability stems from an incomplete fix of CVE-2020-7715. The available references describe the issue as a prototype pollution risk that could allow modification of Ob...

9.8CVSS8.5AI score0.01313EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/24 8:0 p.m.5 views

CVE-2022-21231

All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. Note: This vulnerability derives from an incomplete fix of CVE-2020-7715...

9.8CVSS7.3AI score0.01313EPSS
Exploits1References2
Rows per page
Query Builder