Vulnerabilities > CVE-2021-25948 - Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Expand-Hash Project Expand-Hash
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Prototype pollution vulnerability in 'expand-hash' versions 0.1.0 through 1.0.1 allows an attacker to cause a denial of service and may lead to remote code execution.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |