admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2021-23449.json

Browse Source
This commit is contained in:
Colin 2021-10-22 15:22:50 +01:00 committed by GitHub
parent a328255f01
commit 4c2ccb8b5f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
2021/23xxx/CVE-2021-23449.json
View File

@ -7,7 +7,7 @@
"DATE_PUBLIC": "2021-10-18T16:38:02.098066Z",
"ID": "CVE-2021-23449",
"STATE": "PUBLIC",
"TITLE": "Prototype Pollution"
"TITLE": "Sandbox Bypass"
},
"affects": {
"vendor": {
@ -39,7 +39,7 @@
"description": [
{
"lang": "eng",
"value": "Prototype Pollution"
"value": "Sandbox Bypass"
}
]
}
@ -73,7 +73,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package vm2 before 3.9.4. Prototype Pollution attack vector can lead to sandbox escape and execution of arbitrary code on the host machine."
"value": "This affects the package vm2 before 3.9.4 via a Prototype Pollution attack vector, which can lead to execution of arbitrary code on the host machine."
}
]
},
@ -103,4 +103,4 @@
"value": "Abdullah Alhamdan"
}
]
}
}