Lucene search
GoogleOSV:CVE-2019-10746HistoryAug 23, 2019 - 5:15 p.m.
CVE-2019-10746
2019-08-2317:15:13
Google
osv.dev
9
mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.
References
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFNIVG2XYFPZJY3DYYBJASZ7ZMKBMIJT/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UXRA365KZCUNXMU3KDH5JN5BEPNIGUKC/
snyk.io/vuln/SNYK-JS-MIXINDEEP-450212
www.oracle.com//security-alerts/cpujul2021.html
Related
openvas
openvas
Fedora: Security Advisory for nodejs-mixin-deep (FEDORA-2020-4a8f110332)
2020-02-08 00:00:00
Fedora: Security Advisory for nodejs-mixin-deep (FEDORA-2020-f80e5c0d65)
2020-02-08 00:00:00
githubexploit
githubexploit
Exploit for Argument Injection in Mixin-Deep Project Mixin-Deep
2020-12-01 09:18:57
ubuntucve
ubuntucve
CVE-2019-10746
2019-08-23 00:00:00
nessus
nessus
RHEL 8 : nodejs-mixin-deep (Unpatched Vulnerability)
2024-05-11 00:00:00
Fedora 31 : nodejs-mixin-deep (2020-f80e5c0d65)
2020-02-10 00:00:00
Fedora 30 : nodejs-mixin-deep (2020-4a8f110332)
2020-02-10 00:00:00
osv
osv
Prototype Pollution in mixin-deep
2019-08-27 17:42:33
Moderate: nodejs:12 security update
2021-02-16 07:34:29
Moderate: nodejs:12 security update
2021-02-16 07:34:29
nodejs
nodejs
Prototype Pollution
2019-06-20 14:51:39
github
github
Prototype Pollution in mixin-deep
2019-08-27 17:42:33
fedora
fedora
[SECURITY] Fedora 31 Update: nodejs-mixin-deep-1.3.2-1.fc31
2020-02-08 02:05:18
[SECURITY] Fedora 30 Update: nodejs-mixin-deep-1.3.2-1.fc30
2020-02-08 01:39:51
redhatcve
redhatcve
CVE-2019-10746
2020-03-30 08:17:22
debiancve
debiancve
CVE-2019-10746
2019-08-23 17:15:13
cve
cve
CVE-2019-10746
2019-08-23 17:15:13
prion
prion
Design/Logic Flaw
2019-08-23 17:15:00
cvelist
cvelist
CVE-2019-10746
2019-08-23 16:43:49
nvd
nvd
CVE-2019-10746
2019-08-23 17:15:13
veracode
veracode
Prototype Pollution
2019-06-21 01:02:58
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js modules
2020-08-29 08:56:55
Security Bulletin: Multiple vulnerabilities in React, webpack and Node.js modules affect Tivoli Netcool/OMNIbus WebGUI
2022-10-06 04:09:27
Security Bulletin: Cloud Pak for Security contains security vulnerabilities
2021-05-13 21:45:28
oraclelinux
oraclelinux
nodejs:12 security update
2021-02-20 00:00:00
almalinux
almalinux
Moderate: nodejs:12 security update
2021-02-16 07:34:29
rocky
rocky
nodejs:12 security update
2021-02-16 07:34:29
redhat
redhat
(RHSA-2021:0485) Moderate: rh-nodejs12-nodejs security update
2021-02-11 13:08:55
(RHSA-2021:0549) Moderate: nodejs:12 security update
2021-02-16 07:34:29
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00