Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:madlib-object-utils:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductMadlib Object Utils (f3c392e0-7c89-55af-926f-fc4db647eb0f)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-24279 vulnerable 2026-06-08 05:40:59.780883 Prototype Pollution
HIGH (7.5)
The package madlib-object-utils before 0.1.8 are vulnerable to Prototype Pollution via the setValue method, as it allows an attacker to merge object prototypes into it. *Note:* This vulnerability derives from an incomplete fix of [CVE-2020-7701](https://security.snyk.io/vuln/SNYK-JS-MADLIBOBJECTUTILS-598676)
Published: 2022-04-15T20:00:22.203Z
Updated: 2024-09-17T00:40:52.163Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-7701 vulnerable 2026-06-08 05:27:14.000286 Prototype Pollution
CRITICAL (9.8)
madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue.
Published: 2020-08-14T15:10:12.390Z
Updated: 2024-09-17T01:30:37.949Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.