Vulnerabilities > CVE-2021-23395 - Unspecified vulnerability in Nedb Project Nedb

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
nedb-project

Summary

This affects all versions of package nedb. The library could be tricked into adding or modifying properties of Object.prototype using a __proto__ or constructor.prototype payload.

Vulnerable Configurations

Part Description Count
Application
Nedb_Project
1