Описание
Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| node-getobject | fixed | 1.0.2-1 | package | |
| node-getobject | fixed | 0.1.0-2+deb11u1 | bullseye | package |
| node-getobject | fixed | 0.1.0-2+deb10u1 | buster | package |
| node-getobject | end-of-life | stretch | package |
Примечания
https://github.com/cowboy/node-getobject/commit/84071748fa407caa8f824e0d0b9c1cde9ec56633 (v1.0.0)
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 5 лет назад
Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.
CVSS3: 9.8
redhat
около 5 лет назад
Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.
CVSS3: 9.8
nvd
около 5 лет назад
Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.
