CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2021/12/22 5:55 p.m.•57 views

CVE-2021-23450

All versions of package dojo are vulnerable to Prototype Pollution via the setObject function...

9.8CVSS5.2AI score0.01995EPSS

Exploits1References3

NVD•added 2021/12/17 8:15 p.m.•15 views

CVE-2021-23450

All versions of package dojo are vulnerable to Prototype Pollution via the setObject function...

9.8CVSS0.01995EPSS

Exploits1References9

OSV•added 2021/12/17 8:15 p.m.•23 views

CVE-2021-23450

All versions of package dojo are vulnerable to Prototype Pollution via the setObject function...

9.8CVSS6.6AI score

Exploits0References9

UbuntuCve•added 2021/12/17 8:15 p.m.•35 views

CVE-2021-23450

All versions of package dojo are vulnerable to Prototype Pollution via the setObject function...

9.8CVSS6.8AI score0.01995EPSS

Exploits1References8

CVE•added 2021/12/17 8:5 p.m.•230 views

CVE-2021-23450

CVE-2021-23450 describes a Prototype Pollution vulnerability in the Dojo package, exposed via the setObject function. Multiple connected advisories confirm Dojo is affected and note remediation by upgrading to fixed Dojo versions in vendor advisories (IBM, other vendors) and related security bull...

9.8CVSS8.7AI score0.01995EPSS

Exploits1References9Affected Software1

Debian•added 2018/09/03 8:6 a.m.•27 views

[SECURITY] [DLA 1492-1] dojo security update

Package : dojo Version : 1.10.2+dfsg-1+deb8u1 CVE ID : CVE-2018-15494 Debian Bug : 906540 It was discovered that there was a string injection vulnerability in the "dojo" Javascript library. For Debian 8 "Jessie", this issue has been fixed in dojo version 1.10.2+dfsg-1+deb8u1 by Abhijith PA. We...

9.8CVSS8.1AI score0.00704EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by