Опубликовано: 11 нояб. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 7.5
CVSS3: 7.3
Описание
Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | not-affected | code not present |
| disco | not-affected | code not present |
| eoan | not-affected | code not present |
| esm-apps/bionic | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | |
| upstream | needs-triage |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 70%
0.00621
Низкий
7.5 High
CVSS2
7.3 High
CVSS3
Связанные уязвимости
CVSS3: 7.3
nvd
около 6 лет назад
Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before 3.3.0 for Ruby, allows prototype pollution.
CVSS3: 7.3
debian
около 6 лет назад
Chartkick.js 3.1.0 through 3.1.3, as used in the Chartkick gem before ...
EPSS
Процентиль: 70%
0.00621
Низкий
7.5 High
CVSS2
7.3 High
CVSS3