CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1338

Malware in sbrugna...

9.8CVSS9.2AI score0.02947EPSS

Exploits1References5

RedhatCVE•added 2025/05/22 9:38 p.m.•7 views

CVE-2021-25946

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS7.4AI score0.02947EPSS

Exploits1References1

Github Security Blog•added 2021/06/07 10:12 p.m.•63 views

Prototype pollution in nconf-toml

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS6.8AI score0.02947EPSS

Exploits1References4Affected Software1

vulnersOsv•added 2021/06/07 10:12 p.m.•0 views

@buckeye/bs-layered-config (>=1.0.0 <=1.2.0), reason-nconf (>=1.2.0 <=1.3.2) potentially affected by CVE-2021-25946 via nconf-toml (=0.0.2)

nconf-toml NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on nconf-toml and may be impacted: - @buckeye/bs-layered-config =1.0.0, =1.2.0, =1.3.2 Source cves: CVE-2021-25946 Source advisory: OSV:GHSA-HX7J-43W2-7RJ7...

9.8CVSS7.2AI score0.02947EPSS

Exploits1

OSV•added 2021/06/07 10:12 p.m.•0 views

GHSA-HX7J-43W2-7RJ7 Prototype pollution in nconf-toml

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS6.1AI score0.02947EPSS

Exploits1References4

Veracode•added 2021/05/27 5:34 a.m.•17 views

Prototype Pollution

nconf-toml is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype...

9.8CVSS3.5AI score0.02947EPSS

Exploits1References3Affected Software1

NVD•added 2021/05/25 7:15 p.m.•10 views

CVE-2021-25946

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS0.02947EPSS

Exploits1References2

OSV•added 2021/05/25 7:15 p.m.•18 views

CVE-2021-25946

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS7.7AI score0.02947EPSS

Exploits1References2

CVE•added 2021/05/25 6:48 p.m.•56 views

CVE-2021-25946

CVE-2021-25946 affects the npm package nconf-toml . Vulnerable versions are 0.0.1 through 0.0.2 and the root cause is a prototype pollution flaw in the module, which can allow an attacker to modify object prototypes. The practical impact, as documented, includes a potential denial of service and ...

9.8CVSS9.5AI score0.02947EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/05/25 6:48 p.m.•13 views

CVE-2021-25946

Prototype pollution vulnerability in nconf-toml versions 0.0.1 through 0.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8AI score0.02947EPSS

Exploits1References2

CNNVD•added 2021/05/25 12:0 a.m.•1 views

nconf-toml 安全漏洞

nconf is a plugin in TOML format. A security vulnerability exists in nconf-toml versions 0.0.1 through 0.0.2, which can be exploited by an attacker to cause a denial of service and possibly remote code execution...

9.8CVSS8.8AI score0.02947EPSS

Exploits1References3

Positive Technologies•added 2021/05/25 12:0 a.m.•2 views

PT-2021-16872 · Unknown · Nconf-Toml

Name of the Vulnerable Software and Affected Versions: nconf-toml versions 0.0.1 through 0.0.2 Description: The issue allows an attacker to cause a denial of service and may lead to remote code execution due to a prototype pollution vulnerability. Recommendations: For versions 0.0.1 through 0.0.2...

9.8CVSS9.7AI score0.02947EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by