GCVE - cpe:2.3:a:n/a:sds:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:sds:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Sds (`f556a773-1bfb-55e3-8f02-c1c7fb2a3ee5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-25862`	vulnerable	2026-06-08 05:41:49.581643	Prototype Pollution MEDIUM (4) This affects the package sds from 0.0.0. The library could be tricked into adding or modifying properties of the Object.prototype by abusing the set function located in js/set.js. Note: This vulnerability derives from an incomplete fix to [CVE-2020-7618](https://security.snyk.io/vuln/SNYK-JS-SDS-564123) Published: 2022-05-13T20:05:11.030Z Updated: 2024-09-16T19:20:38.214Z Open on db.gcve.eu Reference links https://snyk.io/vuln/SNYK-JS-SDS-2385944 https://github.com/monsterkodi/sds/blob/master/js/set.js	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-7618`	vulnerable	2026-06-08 05:27:13.821606	Details available sds through 3.2.0 is vulnerable to Prototype Pollution.The library could be tricked into adding or modifying properties of the 'Object.prototype' by abusing the 'set' function located in 'js/set.js'. Published: 2020-04-07T13:22:49.000Z Updated: 2024-08-04T09:33:19.976Z Open on db.gcve.eu Reference links https://snyk.io/vuln/SNYK-JS-SDS-564123 https://github.com/monsterkodi/sds/blob/master/js/set.js#L31	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.