Vulnerabilities > CVE-2022-37598 - Unspecified vulnerability in Uglifyjs Project Uglifyjs 3.13.2

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
uglifyjs-project
critical

Summary

Prototype pollution vulnerability in function DEFNODE in ast.js in mishoo UglifyJS 3.13.2 via the name variable in ast.js. NOTE: the vendor considers this an invalid report.

Vulnerable Configurations

Part Description Count
Application
Uglifyjs_Project
1