CVE-2023-26102 in rangyinformazioni

Riassunto

di MITRE • 24/02/2023

All versions of the package rangy are vulnerable to Prototype Pollution when using the extend() function in file rangy-core.js.The function uses recursive merge which can lead an attacker to modify properties of the Object.prototype

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsabile

Snyk

Prenotare

20/02/2023

Divulgazione

24/02/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00766

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!