node-forge is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as __proto__
, constructor
and prototype
.
CPE | Name | Operator | Version |
---|---|---|---|
node-forge | le | 0.8.5 | |
node-forge | le | 0.9.2 | |
node-forge | le | 0.8.5 | |
node-forge | le | 0.9.2 |