EUVD-2022-1659

Malicious code in bioql PyPI...

SAMSUNG Escargot 安全漏洞

SAMSUNG Escargot is a memory-optimized JavaScript engine from Samsung South Korea for mid-range devices such as cell phones, tablets and TVs. A security vulnerability exists in SAMSUNG Escargot version 4.0.0, which stems from the presence of a heap-based buffer overflow vulnerability...

GHSA-6XWR-Q98W-RVG7 Prototype Pollution in nconf

nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted property, it is possible to...

Prototype Pollution in nconf

nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted property, it is possible to...

CVE-2022-21803

This affects the package nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted...

CVE-2022-21803

This affects the package nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted...

CVE-2022-21803

CVE-2022-21803 affects Node.js nconf prior to 0.11.4. When using the memory engine, a crafted property can trigger prototype pollution by modifying Object.prototype via proto or constructor payloads, potentially enabling arbitrary code execution or a denial of service. A fix is available in nconf...

CVE-2022-21803

This affects the package nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted...

Prototype Pollution

Overview nconf is a Hierarchical node.js configuration with files, environment variables, command-line arguments, and atomic object merging. Affected versions of this package are vulnerable to Prototype Pollution. When using the memory engine, it is possible to store a nested JSON representation ...

mysql: unspecified vulnerability related to SERVER:MEMORY STORAGE ENGINE (CPU October 2014)

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:MEMORY STORAGE ENGINE...