CVE-2020-8158

Summary

Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.

Affected Software

VendorProductVersion RangeStatus
n/atypeormFixed Version: 0.2.25affected

Weaknesses

  • CWE-471: Modification of Assumed-Immutable Data (MAID) (CWE-471)

ADP Enrichment

CVE Program Container

Additional References

References