A vulnerability has been found in comb (affected version unknown) and classified as critical. Affected by this vulnerability is the function deepMerge of the component Prototype Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
comb Prototype deepMerge code injection
- Virtual Patching
- December 11, 2021
- 10:04 am
- Virtual Patching
- December 11, 2021
- 10:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2022-34066 : TEXERCISE UP TO 0.0.12 ON PYTHON BACKDOOR
Description The Texercise package in PyPI v0.0.1 to v0.0.12 was discovered to contain a code execution backdoor. This vulnerability allows
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker