Security Advisory

CVE-2021-20085

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-23 18:41:07

Last updated 2024-08-03 17:30:07

Assigner tenable

State PUBLISHED

Description

Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) in backbone-query-parameters 0.4.0 allows a malicious user to inject properties into Object.prototype.

← Browse all CVEs View on cve.org ↗