Описание
In AngularJS before 1.7.9 the function merge() could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.
A prototype pollution vulnerability was found in AngularJS. A remote attacker could abuse this flaw by providing malicious input to the merge() function by overriding or adding properties of the Object.prototype, allowing possible injection of code.
Отчет
Whilst servicemesh-grafana, and grafana-container both include a vulnerable version of angular.js (v1.6.6) the impact is lowered due to Grafana not directly implementing the angular.merge function. Quay does not contain the affected vulnerable code pattern.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Service Mesh 1 | servicemesh-grafana | Not affected | ||
| Red Hat AMQ Broker 7 | angularjs | Affected | ||
| Red Hat CodeReady Studio 12 | angularjs | Not affected | ||
| Red Hat Decision Manager 7 | angular | Out of support scope | ||
| Red Hat Fuse 7 | angularjs | Affected | ||
| Red Hat OpenShift Container Platform 3.11 | openshift3/grafana | Fix deferred | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-grafana | Fix deferred | ||
| Red Hat Process Automation 7 | angular | Out of support scope | ||
| Red Hat Quay 3 | quay/quay-rhel8 | Not affected | ||
| Red Hat AMQ 7.8.1 | Fixed | RHSA-2021:0417 | 04.02.2021 |
Показывать по
Дополнительная информация
Статус:
7.5 High
CVSS3
Связанные уязвимости
In AngularJS before 1.7.9 the function `merge()` could be tricked into adding or modifying properties of `Object.prototype` using a `__proto__` payload.
In AngularJS before 1.7.9 the function `merge()` could be tricked into adding or modifying properties of `Object.prototype` using a `__proto__` payload.
In AngularJS before 1.7.9 the function `merge()` could be tricked into ...
7.5 High
CVSS3