Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1356

Malware in sbrugna...

9.8CVSS9.2AI score0.02961EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 9:36 p.m.7 views

CVE-2021-25947

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS7.4AI score0.02961EPSS
Exploits1References1
OSV
OSV
added 2021/06/07 9:49 p.m.17 views

GHSA-M7RG-8WVQ-846V Prototype pollution in nestie

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS9.6AI score0.02961EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2021/06/07 9:49 p.m.68 views

Prototype pollution in nestie

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS9.1AI score0.02961EPSS
Exploits1References4Affected Software1
Snyk
Snyk
added 2021/06/05 9:0 p.m.4 views

Prototype Pollution

Overview nestie is an A tiny 224B and fast utility to expand a flattened object Affected versions of this package are vulnerable to Prototype Pollution. A bypass of CVE-2021-25947 is possible which could lead to pollution of the object prototype. PoC var nestie = require"nestie" console.log"Befor...

9.8CVSS9AI score0.02961EPSS
Exploits1References2
Veracode
Veracode
added 2021/06/04 4:14 a.m.16 views

Prototype Pollution

nestie is vulnerable prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype, leading to a denial of service or potentially allow remote code execution...

9.8CVSS5.7AI score0.02961EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2021/06/03 8:15 p.m.11 views

CVE-2021-25947

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS0.02961EPSS
Exploits1References1
OSV
OSV
added 2021/06/03 8:15 p.m.3 views

CVE-2021-25947

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8CVSS6AI score0.02961EPSS
Exploits1References1
Prion
Prion
added 2021/06/03 8:15 p.m.11 views

Remote code execution

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

7.5CVSS9.5AI score0.02961EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/06/03 7:51 p.m.20 views

CVE-2021-25947

Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...

9.8AI score0.02961EPSS
Exploits1References1
CVE
CVE
added 2021/06/03 7:51 p.m.64 views

CVE-2021-25947

CVE-2021-25947 involves the npm package nestie (versions 0.0.0–1.0.0) and is a prototype pollution vulnerability causing DoS and potential remote code execution. The issue stems from unsafe merging/propagation of proto -related properties, allowing an attacker to pollute Object.prototype. Public ...

9.8CVSS9.5AI score0.02961EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/06/03 12:0 a.m.4 views

Npm nestie 安全漏洞

Npm nestie is an Npm open source application for extending the flat object tiny 224B and quick utilities. A security vulnerability exists in nestie that stems from a prototype contamination vulnerability in nestie versions 0.0.0 through 1.0.0. An attacker could exploit the vulnerability to cause ...

9.8CVSS8.8AI score0.02961EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/06/03 12:0 a.m.7 views

PT-2021-16873 · Nestie · Nestie

Name of the Vulnerable Software and Affected Versions: nestie versions 0.0.0 through 1.0.0 Description: The issue allows an attacker to cause a denial of service and may lead to remote code execution. Recommendations: For versions 0.0.0 through 1.0.0, at the moment, there is no information about ...

9.8CVSS9.6AI score0.02961EPSS
Exploits1References5
Rows per page
Query Builder