You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Module: protobufjs
Installed version: 6.11.2
Published: 28/05/2022, 02:00:20
CWE-1321 GHSA-g954-5hwp-pp24
Vulnerable: <6.11.3
Patched: >=6.11.3
Overview
The package protobufjs before 6.11.3 are vulnerable to Prototype Pollution which can allow an attacker to add/modify properties of the Object.prototype.
This vulnerability can occur in multiple ways:
by providing untrusted user input to util.setProperty or to ReflectionObject.setParsedOption functions
by parsing/loading .proto files
Remediation
Upgrade to version 6.11.3 or later
The text was updated successfully, but these errors were encountered:
Module: protobufjs
Installed version: 6.11.2
Published: 28/05/2022, 02:00:20
CWE-1321
GHSA-g954-5hwp-pp24
Vulnerable: <6.11.3
Patched: >=6.11.3
Overview
The package protobufjs before 6.11.3 are vulnerable to Prototype Pollution which can allow an attacker to add/modify properties of the Object.prototype.
This vulnerability can occur in multiple ways:
by providing untrusted user input to util.setProperty or to ReflectionObject.setParsedOption functions
by parsing/loading .proto files
Remediation
Upgrade to version 6.11.3 or later
The text was updated successfully, but these errors were encountered: