Lucene search
Veracode Vulnerability DatabaseVERACODE:46659HistoryApr 29, 2024 - 5:11 a.m.
Prototype Pollution
2024-04-2905:11:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
ejs
vulnerability
prototype pollution
inadequate object checks
prototype protection
attackers
overwrite
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
47.9%
ejs is vulnerable to Prototype Pollution. The vulnerability is due to inadequate object checks which lack prototype protection measures, which allows an attackers to overwrite certain object prototypes.
Related
cgr
cgr
CVE-2024-33883 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2024-33883
2024-04-28 16:15:23
cvelist
cvelist
CVE-2024-33883
2024-04-28 00:00:00
cve
cve
CVE-2024-33883
2024-04-28 16:15:23
ubuntucve
ubuntucve
CVE-2024-33883
2024-04-28 00:00:00
osv
osv
CVE-2024-33883
2024-04-28 16:15:23
CGA-3vpj-q6fj-cx7m
2024-06-06 12:22:09
ejs lacks certain pollution protection
2024-04-28 18:30:31
nvd
nvd
CVE-2024-33883
2024-04-28 16:15:23
ibm
ibm
wolfi
wolfi
CVE-2024-33883 vulnerabilities
2024-09-19 09:11:50
githubexploit
githubexploit
Exploit for CVE-2024-33883
2024-06-25 18:40:31
vulnrichment
vulnrichment
CVE-2024-33883
2024-04-28 00:00:00
github
github
ejs lacks certain pollution protection
2024-04-28 18:30:31
redos
redos
ROS-20240719-05
2024-07-19 00:00:00
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
47.9%
Related for VERACODE:46659