Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2023-26136

Опубликовано: 03 сент. 2025
Источник: msrc
CVSS3: 9.8
EPSS Низкий

Описание

Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.

EPSS

Процентиль: 91%
0.06872
Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVSS3: 6.5
ubuntu
больше 2 лет назад

Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.

CVSS3: 6.5
redhat
больше 2 лет назад

Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.

CVSS3: 6.5
nvd
больше 2 лет назад

Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.

CVSS3: 6.5
debian
больше 2 лет назад

Versions of the package tough-cookie before 4.1.3 are vulnerable to Pr ...

CVSS3: 6.5
github
больше 2 лет назад

tough-cookie Prototype Pollution vulnerability

EPSS

Процентиль: 91%
0.06872
Низкий

9.8 Critical

CVSS3