Vulnerabilities > CVE-2021-3645 - Unspecified vulnerability in Merge Project Merge 1.0.0

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
merge-project
critical
NVD
Published: 2021-09-10
Updated: 2024-11-21

Summary

merge is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Vulnerable Configurations

Part Description Count
Application
Merge_Project
1

References