Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2024/02/25 12:0 a.m.11 views

The vulnerability of the setKey() function in the minimist library, which allows a hacker to execute a “ prototype pollution ” attack.

The vulnerability of the setKey function in the minimist library relates to the uncontrolled modification of object prototype attributes. Exploiting this vulnerability could allow a remote attacker to execute a “prototype pollution” attack...

10CVSS7.1AI score0.04581EPSS
Exploits1References11Affected Software29
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.3 views

minimist: prototype pollution

An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw CVE-2021-44906 allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using ...

9.8CVSS6.8AI score0.04581EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/11/28 2:39 p.m.8 views

minimist: prototype pollution

An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw CVE-2021-44906 allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using ...

9.8CVSS6.8AI score0.04581EPSS
Exploits1References5
Veracode
Veracode
added 2020/03/12 5:22 a.m.41 views

Prototype Pollution

minimist is vulnerable to prototype pollution. The library allows an attacker to modify properties of Object.prototype using a constructor or proto payload...

5.6CVSS4.6AI score0.01884EPSS
Exploits2References3Affected Software20
OSV
OSV
added 2020/03/11 11:15 p.m.5 views

UBUNTU-CVE-2020-7598

minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "proto" payload...

5.6CVSS6.7AI score0.01884EPSS
Exploits2References3
Rows per page
Query Builder