Lucene search
Veracode Vulnerability DatabaseVERACODE:46659HistoryApr 29, 2024 - 5:11 a.m.
Prototype Pollution
2024-04-2905:11:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
ejs
vulnerability
prototype pollution
inadequate object checks
prototype protection
attackers
overwrite
ejs is vulnerable to Prototype Pollution. The vulnerability is due to inadequate object checks which lack prototype protection measures, which allows an attackers to overwrite certain object prototypes.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ejs | le | 3.1.9 | |
| node-ejs:sid | eq | 2.5.7-2 | |
| node-ejs:sid | eq | 2.5.7-3 | |
| ejs | le | 3.1.9 | |
| node-ejs:sid | eq | 2.5.7-2 | |
| node-ejs:sid | eq | 2.5.7-3 |
Related
osv
osv
CVE-2024-33883
2024-04-28 16:15:23
ejs lacks certain pollution protection
2024-04-28 18:30:31
cvelist
cvelist
CVE-2024-33883
2024-04-28 00:00:00
cve
cve
CVE-2024-33883
2024-04-28 16:15:23
ubuntucve
ubuntucve
CVE-2024-33883
2024-04-28 00:00:00
cgr
cgr
CVE-2024-33883 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2024-33883
2024-04-28 16:15:23
github
github
ejs lacks certain pollution protection
2024-04-28 18:30:31
nvd
nvd
CVE-2024-33883
2024-04-28 16:15:23
ibm
ibm
wolfi
wolfi
CVE-2024-33883 vulnerabilities
2024-06-30 21:08:34
githubexploit
githubexploit
Exploit for CVE-2024-33883
2024-06-25 18:40:31