Описание
Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | not-affected | 2.0.6+~2.0.5-2 |
| esm-apps/focal | needed | |
| esm-apps/jammy | needed | |
| esm-apps/noble | needed | |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| kinetic | ignored | end of life, was needed |
| lunar | ignored | end of life, was needed |
| mantic | ignored | end of life, was needed |
Показывать по
10
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
больше 2 лет назад
Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.
CVSS3: 7.5
debian
больше 2 лет назад
Versions of the package dottie before 2.0.4 are vulnerable to Prototyp ...
7.5 High
CVSS3