1. CVE-Search
  2. CVE-2020-28270
ID CVE-2020-28270
Summary Prototype pollution vulnerability in 'object-hierarchy-access' versions 0.2.0 through 0.32.0 allows attacker to cause a denial of service and may lead to remote code execution.
References
Vulnerable Configurations
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.13.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.14.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.15.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.16.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.17.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.18.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.19.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.2:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.20.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.21.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.21.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.22.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.22.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.23.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.23.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.24.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.24.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.2:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.25.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.26.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.26.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.27.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.27.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.27.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.27.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.28.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.28.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.29.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.29.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.29.1:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.29.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.30.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.30.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.31.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.31.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mjpclab:object-hierarchy-access:0.32.0:*:*:*:*:*:*:*
    cpe:2.3:a:mjpclab:object-hierarchy-access:0.32.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 06-01-2022 - 14:18)
Impact:
Exploitability:
CWE CWE-1321
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
misc
Last major update 06-01-2022 - 14:18
Published 12-11-2020 - 18:15
Last modified 06-01-2022 - 14:18
Back to Top