Description

The dot package v1.1.2 uses Function() to compile templates. This can be exploited by the attacker if they can control the given template or if they can control the value set on Object.prototype.

Remediation

References

https://hackerone.com/reports/390929

Related Vulnerabilities

CVE-2018-1002203 Vulnerability in npm package unzipper

CVE-2022-45868 Vulnerability in maven package com.h2database:h2

CVE-2023-24789 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-parent

CVE-2020-28433 Vulnerability in npm package node-latex-pdf

CVE-2022-45395 Vulnerability in maven package com.thalesgroup.jenkins-ci.plugins:cccc

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Mitigation Third Party Advisory