Description
All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806.
Remediation
References
https://github.com/DataTables/Dist-DataTables/blob/master/js/jquery.dataTables.js%23L2766
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1051961
https://github.com/DataTables/DataTablesSrc/commit/a51cbe99fd3d02aa5582f97d4af1615d11a1ea03
https://snyk.io/vuln/SNYK-JS-DATATABLESNET-1016402
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1051962
https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806
https://security.netapp.com/advisory/ntap-20240621-0006/
Related Vulnerabilities
CVE-2020-7691 Vulnerability in maven package org.webjars.npm:jspdf
CVE-2019-12313 Vulnerability in npm package shave
CVE-2019-18798 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2021-44667 Vulnerability in maven package com.alibaba.nacos:nacos-common
CVE-2019-3875 Vulnerability in maven package org.keycloak:keycloak-server-spi-private