Description

The utilities function in all versions <= 1.0.0 of the merge-options node module can be tricked into modifying the prototype of Object when the attacker can control part of the structure passed to this function. This can let an attacker add or modify existing properties that will exist on all objects.

Remediation

References

https://hackerone.com/reports/311336

Related Vulnerabilities

CVE-2021-29480 Vulnerability in maven package io.ratpack:ratpack-session

CVE-2020-16022 Vulnerability in maven package org.webjars.npm:electron

CVE-2023-37895 Vulnerability in maven package org.apache.jackrabbit:jackrabbit-standalone

CVE-2023-33202 Vulnerability in maven package org.bouncycastle:bc-fips-debug

CVE-2020-10591 Vulnerability in maven package com.walmartlabs.concord.server:concord-server

Severity

Critical

Classification

CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Issue Tracking Third Party Advisory