Description
Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.
Remediation
References
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28282
https://github.com/cowboy/node-getobject/blob/aba04a8e1d6180eb39eff09990c3a43886ba8937/lib/getobject.js#L48
Related Vulnerabilities
CVE-2023-49620 Vulnerability in maven package org.apache.dolphinscheduler:dolphinscheduler-service
CVE-2022-1295 Vulnerability in maven package org.webjars.bower:fullpage
CVE-2022-24373 Vulnerability in npm package react-native-reanimated
CVE-2022-37616 Vulnerability in maven package org.webjars.npm:xmldom__xmldom
CVE-2020-25711 Vulnerability in maven package org.infinispan:infinispan-server-runtime