Async Project CVE

Filtered by vendor Async Project Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-43138	2 Async Project, Fedoraproject	2 Async, Fedora	2024-06-21	7.8 High
In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileges via the mapValues() method, aka lib/internal/iterator.js createObjectIterator prototype pollution.

Page 1 of 1.