Vulnerabilities > CVE-2021-20089 - Unspecified vulnerability in Purl Project Purl 2.3.2

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
purl-project
NVD
Published: 2021-04-23
Updated: 2023-08-08

Summary

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in purl 2.3.2 allows a malicious user to inject properties into Object.prototype.

Vulnerable Configurations

Part Description Count
Application
Purl_Project
1

References