Zurück zur CVE-Übersicht
CVE-2020-28271
CRITICAL(9.8)CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Risk Signal Score25/100 — MITTEL
- CVSS 9.8 — Kritisch
EPSS-Score
3%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
9.8
Technische Schwere
Beschreibung
Prototype pollution vulnerability in 'deephas' versions 1.0.0 through 1.0.5 allows attacker to cause a denial of service and may lead to remote code execution.
Referenzen
- https://github.com/sharpred/deepHas/commit/2fe011713a6178c50f7deb6f039a8e5435981...
- https://www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28271
- https://github.com/sharpred/deepHas/commit/2fe011713a6178c50f7deb6f039a8e5435981...
- https://www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28271