Set
1 CVEs
product
Monthly
Prototype pollution vulnerability in '@strikeentco/set' version 1.0.0 allows attacker to cause a denial of service and may lead to remote code execution. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
RCE
Denial Of Service
Set
NVD
GitHub
CVSS 3.1
7.5
EPSS
2.2%
CVE-2020-28267
npm
EPSS 2%
CVSS 7.5
HIGH
PATCH
This Week
Prototype pollution vulnerability in '@strikeentco/set' version 1.0.0 allows attacker to cause a denial of service and may lead to remote code execution. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
RCE
Denial Of Service
Set
NVD
GitHub