Vulnerability Database

296,733

Total vulnerabilities in the database

CVE-2020-7774

The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.

CVSS v3:

  • Severity: Critical
  • Score: 9.8
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
y18n_project / y18n 5.0.0 5.0.5
y18n_project / y18n - 3.2.2
y18n_project / y18n 4.0.0 4.0.0.x
oracle / graalvm 20.3.1.2 20.3.1.2.x
oracle / graalvm 21.0.0.2 21.0.0.2.x
oracle / graalvm 19.3.5 19.3.5.x
siemens / sinec_infrastructure_network_services - 1.0.1.1
Node.js icon y18n - 3.2.2
Node.js icon y18n 4.0.0 4.0.0.x
Node.js icon y18n 4.0.0 4.0.1
Node.js icon y18n 5.0.0 5.0.5