CVE-2020-7638

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.
Configurations

Configuration 1

cpe:2.3:a:confinit_project:confinit:*:*:*:*:*:node.js:*:*

Information

Published : 2020-04-06 01:15

Updated : 2022-12-02 07:58


NVD link : CVE-2020-7638

Mitre link : CVE-2020-7638

Products Affected
No products.
CWE
CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')