Lucene search
GoogleOSV:GHSA-PP75-XFPW-37G9HistoryMay 10, 2021 - 7:16 p.m.
Prototype pollution in grpc and @grpc/grpc-js
2021-05-1019:16:14
Google
osv.dev
166
package vulnerability
grpc
grpc-js
prototype pollution
loadpackagedefinition
EPSS
0.005
Percentile
77.6%
“The package grpc before 1.24.4 and the package @grpc/grpc-js before 1.1.8 are vulnerable to Prototype Pollution via loadPackageDefinition.”
References
github.com/grpc/grpc-node/pull/1605
github.com/grpc/grpc-node/pull/1606
github.com/grpc/grpc-node/releases/tag/grpc%401.24.4
nvd.nist.gov/vuln/detail/CVE-2020-7768
snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038819
snyk.io/vuln/SNYK-JS-GRPC-598671
snyk.io/vuln/SNYK-JS-GRPCGRPCJS-1038818
www.npmjs.com/package/@grpc/grpc-js
www.npmjs.com/package/grpc
Related
nodejs
nodejs
Prototype Pollution
2021-05-10 19:18:00
prion
prion
Design/Logic Flaw
2020-11-11 11:15:00
nessus
nessus
Photon OS 2.0: Grpc PHSA-2020-2.0-0305
2020-12-15 00:00:00
Photon OS 3.0: Grpc PHSA-2020-3.0-0176
2020-12-15 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0176
2020-12-11 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0305
2020-12-11 00:00:00
Critical Photon OS Security Update - PHSA-2020-3.0-0176
2020-12-11 00:00:00
cve
cve
CVE-2020-7768
2020-11-11 11:15:10
redhatcve
redhatcve
CVE-2020-7768
2020-11-12 13:24:31
cvelist
cvelist
CVE-2020-7768 Prototype Pollution
2020-11-11 10:20:16
github
github
Prototype pollution in grpc and @grpc/grpc-js
2021-05-10 19:16:14
osv
osv
CVE-2020-7768
2020-11-11 11:15:10
veracode
veracode
Prototype Pollution
2020-11-12 01:03:39
huntr
huntr
Prototype Pollution in grpc/grpc-node
2021-01-26 00:00:00
nvd
nvd
CVE-2020-7768
2020-11-11 11:15:10
