Vulnerabilities > CVE-2019-10808 - Unspecified vulnerability in Xcritical.Software Utilitify 1.0.0/1.0.1/1.0.2

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
xcritical-software

Summary

utilitify prior to 1.0.3 allows modification of object properties. The merge method could be tricked into adding or modifying properties of the Object.prototype.