CVE-2020-28274

CVE-2020-28274

EPSS 2.2%

Prototype pollution vulnerability in 'deepref' versions 1.1.1 through 1.2.1 allows attacker to cause a denial of service and may lead to remote code execution.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28274%2Chttps://github.com/isaymatato/deepref/commit/24935e6a1060cb09c641d3075982f0b44cfca4c2