Описание
Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype.
EPSS
Процентиль: 37%
0.00159
Низкий
8.2 High
CVSS3
Дефекты
CWE-1321
Связанные уязвимости
CVSS3: 8.2
redhat
больше 1 года назад
Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype.
EPSS
Процентиль: 37%
0.00159
Низкий
8.2 High
CVSS3
Дефекты
CWE-1321