Lucene search
Veracode Vulnerability DatabaseVERACODE:7685HistoryNov 05, 2018 - 3:34 a.m.
Prototype Pollution
2018-11-0503:34:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
40.5%
cached-path-relative is vulnerable to a prototype pollution attack. Attackers can add or modify existing properties relating to an Object by using the utilities function to change the prototype of said Object. Using this flaw, attackers can trigger denial of service (DoS) attacks and in some situations remote code execution (RCE) attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cached-path-relative | le | 1.0.1 | |
| cached-path-relative | le | 1.0.1 |
Related
github
github
Prototype Pollution in cached-path-relative
2018-11-07 20:46:25
cve
cve
CVE-2018-16472
2018-11-06 19:29:00
debiancve
debiancve
CVE-2018-16472
2018-11-06 19:29:00
prion
prion
Design/Logic Flaw
2018-11-06 19:29:00
hackerone
hackerone
nodejs
nodejs
Prototype Pollution
2018-11-29 02:31:31
cvelist
cvelist
CVE-2018-16472
2018-11-06 00:00:00
redhatcve
redhatcve
CVE-2018-16472
2018-11-12 23:49:31
ubuntucve
ubuntucve
CVE-2018-16472
2018-11-06 00:00:00
osv
osv
Prototype Pollution in cached-path-relative
2018-11-07 20:46:25
node-cached-path-relative - security update
2022-12-05 00:00:00
nvd
nvd
CVE-2018-16472
2018-11-06 19:29:00
nessus
nessus
Debian DLA-3221-1 : node-cached-path-relative - LTS security update
2022-12-05 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3221-1)
2022-12-05 00:00:00
debian
debian
[SECURITY] [DLA 3221-1] node-cached-path-relative security update
2022-12-04 23:52:15