Moole Vulnerability Database

Find real vulnerabilities before they ship

Critical

CVE-2021-3918

json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

VectorNETWORK

PublishedNov 13, 2021, 09:15

Published Bysecurity@huntr.dev

Base Score

Score9.8

Package (Ecosystem)IntroducedFixedLimit

json-schema(npm)00.4.0N/A

CWE-1321

Base Score

9.8

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base SeverityCritical

Version

3.1

Attack Vector (AV)

NETWORK