Security Advisory

CVE-2020-7720

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-01 09:35:12

Last updated 2024-09-16 17:49:31

Assigner snyk

State PUBLISHED

Description

The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions.

← Browse all CVEs View on cve.org ↗