CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7608

yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "__proto__" payload.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.2%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.6

References

Products affected by CVE-2020-7608

Yargs » Yargs-Parser » Version: 1.0.0

cpe:2.3:a:yargs:yargs-parser:1.0.0
Yargs » Yargs-Parser » Version: 1.0.1

cpe:2.3:a:yargs:yargs-parser:1.0.1
Yargs » Yargs-Parser » Version: 1.1.0

cpe:2.3:a:yargs:yargs-parser:1.1.0
Yargs » Yargs-Parser » Version: 1.1.1

cpe:2.3:a:yargs:yargs-parser:1.1.1
Yargs » Yargs-Parser » Version: 10.0.0

cpe:2.3:a:yargs:yargs-parser:10.0.0
Yargs » Yargs-Parser » Version: 10.1.0

cpe:2.3:a:yargs:yargs-parser:10.1.0
Yargs » Yargs-Parser » Version: 11.0.0

cpe:2.3:a:yargs:yargs-parser:11.0.0
Yargs » Yargs-Parser » Version: 11.1.0

cpe:2.3:a:yargs:yargs-parser:11.1.0
Yargs » Yargs-Parser » Version: 11.1.1

cpe:2.3:a:yargs:yargs-parser:11.1.1
Yargs » Yargs-Parser » Version: 12.0.0

cpe:2.3:a:yargs:yargs-parser:12.0.0
Yargs » Yargs-Parser » Version: 13.0.0

cpe:2.3:a:yargs:yargs-parser:13.0.0
Yargs » Yargs-Parser » Version: 13.1.0

cpe:2.3:a:yargs:yargs-parser:13.1.0
Yargs » Yargs-Parser » Version: 13.1.1

cpe:2.3:a:yargs:yargs-parser:13.1.1
Yargs » Yargs-Parser » Version: 14.0.0

cpe:2.3:a:yargs:yargs-parser:14.0.0
Yargs » Yargs-Parser » Version: 15.0.0

cpe:2.3:a:yargs:yargs-parser:15.0.0
Yargs » Yargs-Parser » Version: 16.0.0

cpe:2.3:a:yargs:yargs-parser:16.0.0
Yargs » Yargs-Parser » Version: 16.1.0

cpe:2.3:a:yargs:yargs-parser:16.1.0
Yargs » Yargs-Parser » Version: 17.0.0

cpe:2.3:a:yargs:yargs-parser:17.0.0
Yargs » Yargs-Parser » Version: 17.0.1

cpe:2.3:a:yargs:yargs-parser:17.0.1
Yargs » Yargs-Parser » Version: 17.1.0

cpe:2.3:a:yargs:yargs-parser:17.1.0
Yargs » Yargs-Parser » Version: 18.0.0

cpe:2.3:a:yargs:yargs-parser:18.0.0
Yargs » Yargs-Parser » Version: 18.1.0

cpe:2.3:a:yargs:yargs-parser:18.1.0
Yargs » Yargs-Parser » Version: 2.0.0

cpe:2.3:a:yargs:yargs-parser:2.0.0
Yargs » Yargs-Parser » Version: 2.1.0

cpe:2.3:a:yargs:yargs-parser:2.1.0
Yargs » Yargs-Parser » Version: 2.1.1

cpe:2.3:a:yargs:yargs-parser:2.1.1
Yargs » Yargs-Parser » Version: 2.1.2

cpe:2.3:a:yargs:yargs-parser:2.1.2
Yargs » Yargs-Parser » Version: 2.2.0

cpe:2.3:a:yargs:yargs-parser:2.2.0
Yargs » Yargs-Parser » Version: 2.3.0

cpe:2.3:a:yargs:yargs-parser:2.3.0
Yargs » Yargs-Parser » Version: 2.4.0

cpe:2.3:a:yargs:yargs-parser:2.4.0
Yargs » Yargs-Parser » Version: 2.4.1

cpe:2.3:a:yargs:yargs-parser:2.4.1
Yargs » Yargs-Parser » Version: 3.0.0

cpe:2.3:a:yargs:yargs-parser:3.0.0
Yargs » Yargs-Parser » Version: 3.1.0

cpe:2.3:a:yargs:yargs-parser:3.1.0
Yargs » Yargs-Parser » Version: 3.2.0

cpe:2.3:a:yargs:yargs-parser:3.2.0
Yargs » Yargs-Parser » Version: 4.0.0

cpe:2.3:a:yargs:yargs-parser:4.0.0
Yargs » Yargs-Parser » Version: 4.0.1

cpe:2.3:a:yargs:yargs-parser:4.0.1
Yargs » Yargs-Parser » Version: 4.0.2

cpe:2.3:a:yargs:yargs-parser:4.0.2
Yargs » Yargs-Parser » Version: 4.1.0

cpe:2.3:a:yargs:yargs-parser:4.1.0
Yargs » Yargs-Parser » Version: 4.2.0

cpe:2.3:a:yargs:yargs-parser:4.2.0
Yargs » Yargs-Parser » Version: 4.2.1

cpe:2.3:a:yargs:yargs-parser:4.2.1
Yargs » Yargs-Parser » Version: 5.0.0

cpe:2.3:a:yargs:yargs-parser:5.0.0
Yargs » Yargs-Parser » Version: 6.0.0

cpe:2.3:a:yargs:yargs-parser:6.0.0
Yargs » Yargs-Parser » Version: 6.0.1

cpe:2.3:a:yargs:yargs-parser:6.0.1
Yargs » Yargs-Parser » Version: 7.0.0

cpe:2.3:a:yargs:yargs-parser:7.0.0
Yargs » Yargs-Parser » Version: 8.0.0

cpe:2.3:a:yargs:yargs-parser:8.0.0
Yargs » Yargs-Parser » Version: 8.1.0

cpe:2.3:a:yargs:yargs-parser:8.1.0
Yargs » Yargs-Parser » Version: 9.0.0

cpe:2.3:a:yargs:yargs-parser:9.0.0
Yargs » Yargs-Parser » Version: 9.0.1

cpe:2.3:a:yargs:yargs-parser:9.0.1
Yargs » Yargs-Parser » Version: 9.0.2

cpe:2.3:a:yargs:yargs-parser:9.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7608

Products

Pricing

Contact Us