This affects the package total.js before 3.4.7. The set function can be used to set a value into the object according to the path. However the keys of the path being set are not properly sanitized, leading to a prototype pollution vulnerability. The impact depends on the application. In some cases it is possible to achieve Denial of service (DoS), Remote Code Execution or Property Injection.
References
Link | Resource |
---|---|
https://docs.totaljs.com/latest/en.html%23api~FrameworkUtils~U.set | Broken Link |
https://github.com/totaljs/framework/blob/master/utils.js%23L6606 | Broken Link |
https://github.com/totaljs/framework/blob/master/utils.js%23L6617 | Broken Link |
https://github.com/totaljs/framework/commit/b3f901561d66ab799a4a99279893b94cad7ae4ff | Patch Third Party Advisory |
https://snyk.io/vuln/SNYK-JS-TOTALJS-1046671 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: snyk
Published: 2021-02-02T00:00:00
Updated: 2021-02-02T10:25:17
Reserved: 2020-11-12T00:00:00
Link: CVE-2020-28495
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-02T11:15:13.257
Modified: 2021-02-05T16:53:47.807
Link: CVE-2020-28495
JSON object: View
Redhat Information
No data.
CWE