Lucene search
K

8 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in underscore

The package underscore from 1.13.0-0 and before 1.13.0-2, as well as from 1.3.2 and before 1.12.1, are vulnerable to Arbitrary Code Injection via the template function, especially when a variable property is passed as an argument without proper sanitization...

7.2CVSS6.9AI score0.04087EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: nodejs-underscore (UTSA-2026-016621)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016621 advisory. The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function,...

7.2CVSS6.8AI score0.04087EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-4913-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.2AI score0.04087EPSS
Exploits2References2
OSV
OSV
added 2021/05/06 4:9 p.m.3 views

GHSA-CF4H-3JHX-XVHQ Arbitrary Code Execution in underscore

The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Execution via the template function, particularly when a variable property is passed as an argument as it is not sanitized...

9.8CVSS6.8AI score0.04087EPSS
Exploits2References31
OSV
OSV
added 2021/03/29 2:15 p.m.2 views

DEBIAN-CVE-2021-23358

The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized...

7.2CVSS6.4AI score0.04087EPSS
Exploits2References1
Prion
Prion
added 2021/03/29 2:15 p.m.18 views

Code injection

The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized...

6.5CVSS7AI score0.04087EPSS
Exploits2References15Affected Software4
Cvelist
Cvelist
added 2021/03/29 1:15 p.m.32 views

CVE-2021-23358 Arbitrary Code Injection

The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized...

3.3CVSS7.5AI score0.04087EPSS
Exploits2References15
Vulnrichment
Vulnrichment
added 2021/03/29 1:15 p.m.21 views

CVE-2021-23358 Arbitrary Code Injection

The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized...

3.3CVSS7.1AI score0.04087EPSS
Exploits2References15
Rows per page
Query Builder