CVE-2020-8158
N/A
N/A
Summary
Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | typeorm | Fixed Version: 0.2.25 | affected |
Weaknesses
- CWE-471: Modification of Assumed-Immutable Data (MAID) (CWE-471)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.