Lucene search
GoogleOSV:CVE-2020-8203HistoryJul 15, 2020 - 5:15 p.m.
CVE-2020-8203
2020-07-1517:15:11
Google
osv.dev
7
Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
| CPE | Name | Operator | Version |
|---|---|---|---|
| lodash | eq | 4.17.11-npm | |
| lodash | eq | 3.7.0-npm | |
| lodash | eq | 4.16.3-npm | |
| lodash | eq | 4.8.2-npm | |
| lodash | eq | 4.16.2-npm | |
| lodash | eq | 3.0.1-npm | |
| lodash | eq | 4.14.2-npm | |
| lodash | eq | 3.9.0-npm | |
| lodash | eq | 4.13.0-npm | |
| lodash | eq | 4.16.5-npm |
References
github.com/lodash/lodash/issues/4874
hackerone.com/reports/712065
security.netapp.com/advisory/ntap-20200724-0006/
www.oracle.com//security-alerts/cpujul2021.html
www.oracle.com/security-alerts/cpuApr2021.html
www.oracle.com/security-alerts/cpuapr2022.html
www.oracle.com/security-alerts/cpujan2022.html
www.oracle.com/security-alerts/cpuoct2021.html
Related
ibm
ibm
Security Bulletin: Security Vulnerabilities affect IBM Cloud Pak for Data - Node.js (CVE-2020-8203)
2020-10-01 21:23:31
Security Bulletin: CVE-2020-8203
2022-07-08 19:00:44
Security Bulletin: CVE-2020-8203
2022-07-08 18:57:45
cvelist
cvelist
CVE-2020-8203
2020-07-15 16:10:27
githubexploit
githubexploit
Exploit for Prototype Pollution in Lodash
2020-12-01 09:45:48
prion
prion
Code injection
2020-07-15 17:15:00
hackerone
hackerone
Node.js third-party modules: Prototype pollution attack (lodash)
2019-10-11 12:06:20
osv
osv
Prototype Pollution in lodash
2020-07-15 19:15:48
cve
cve
CVE-2020-8203
2020-07-15 17:15:11
redhatcve
redhatcve
CVE-2020-8203
2020-07-15 20:08:37
ubuntucve
ubuntucve
CVE-2020-8203
2020-07-15 00:00:00
veracode
veracode
Prototype Pollution
2020-04-28 09:42:14
nvd
nvd
CVE-2020-8203
2020-07-15 17:15:11
debiancve
debiancve
CVE-2020-8203
2020-07-15 17:15:11
github
github
Prototype Pollution in lodash
2020-07-15 19:15:48
huntr
huntr
Lodash 4.17.15 in use which is vulnerable to CVE-2020-8203
2023-02-20 02:52:19
nessus
nessus
RHEL 8 : Red Hat Virtualization (RHSA-2020:5611)
2020-12-18 00:00:00
RHEL 8 : Red Hat Virtualization (RHSA-2020:5179)
2020-11-24 00:00:00
RHEL 8 : Red Hat Virtualization (RHSA-2020:3807)
2020-09-23 00:00:00
redhat
redhat
redos
redos
ROS-20240418-08
2024-04-18 00:00:00
checkpoint_advisories
checkpoint_advisories
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00