3 matches found
CVE-2022-37621
CVE-2022-37621 affects thlorenz browserify-shim 3.8.15, with a prototype pollution in resolve-shims.js (resolveShims) exploitable via the fullPath variable. Risk details from sources indicate a CRITICAL impact (CVSSv3.1: 9.8) and network access are possible, with no user interaction required. Rem...
CVE-2022-37623
CVE-2022-37623 affects the browserify-shim project by a prototype-pollution vulnerability in the internal function resolveShims (resolve-shims.js) that is exploitable through the shimPath variable. The affected version is 3.8.15 . CVSSv3.1/vectors listed in the initial document indicate a CRITICA...
CVE-2022-37617
Prototype pollution in thlorenz browserify-shim 3.8.15, due to the k variable handling in resolve-shims.js (resolveShims function). Connected sources list this as a vulnerability in the browserify-shim package, with the issue affecting resolution logic in resolve-shims.js and enabling potential p...