Vulnerability Details CVE-2020-8158
Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2020-8158
-
cpe:2.3:a:typeorm:typeorm:0.0.10
-
cpe:2.3:a:typeorm:typeorm:0.0.11
-
cpe:2.3:a:typeorm:typeorm:0.0.2
-
cpe:2.3:a:typeorm:typeorm:0.0.3
-
cpe:2.3:a:typeorm:typeorm:0.0.4
-
cpe:2.3:a:typeorm:typeorm:0.0.5
-
cpe:2.3:a:typeorm:typeorm:0.0.6
-
cpe:2.3:a:typeorm:typeorm:0.0.7
-
cpe:2.3:a:typeorm:typeorm:0.0.8
-
cpe:2.3:a:typeorm:typeorm:0.0.9
-
cpe:2.3:a:typeorm:typeorm:0.1.0
-
cpe:2.3:a:typeorm:typeorm:0.1.1
-
cpe:2.3:a:typeorm:typeorm:0.1.10
-
cpe:2.3:a:typeorm:typeorm:0.1.12
-
cpe:2.3:a:typeorm:typeorm:0.1.13
-
cpe:2.3:a:typeorm:typeorm:0.1.14
-
cpe:2.3:a:typeorm:typeorm:0.1.15
-
cpe:2.3:a:typeorm:typeorm:0.1.16
-
cpe:2.3:a:typeorm:typeorm:0.1.17
-
cpe:2.3:a:typeorm:typeorm:0.1.18
-
cpe:2.3:a:typeorm:typeorm:0.1.19
-
cpe:2.3:a:typeorm:typeorm:0.1.2
-
cpe:2.3:a:typeorm:typeorm:0.1.3
-
cpe:2.3:a:typeorm:typeorm:0.1.4
-
cpe:2.3:a:typeorm:typeorm:0.1.5
-
cpe:2.3:a:typeorm:typeorm:0.1.6
-
cpe:2.3:a:typeorm:typeorm:0.1.7
-
cpe:2.3:a:typeorm:typeorm:0.1.8
-
cpe:2.3:a:typeorm:typeorm:0.1.9
-
cpe:2.3:a:typeorm:typeorm:0.2.0
-
cpe:2.3:a:typeorm:typeorm:0.2.1
-
cpe:2.3:a:typeorm:typeorm:0.2.10
-
cpe:2.3:a:typeorm:typeorm:0.2.11
-
cpe:2.3:a:typeorm:typeorm:0.2.12
-
cpe:2.3:a:typeorm:typeorm:0.2.13
-
cpe:2.3:a:typeorm:typeorm:0.2.14
-
cpe:2.3:a:typeorm:typeorm:0.2.15
-
cpe:2.3:a:typeorm:typeorm:0.2.16
-
cpe:2.3:a:typeorm:typeorm:0.2.17
-
cpe:2.3:a:typeorm:typeorm:0.2.18
-
cpe:2.3:a:typeorm:typeorm:0.2.19
-
cpe:2.3:a:typeorm:typeorm:0.2.2
-
cpe:2.3:a:typeorm:typeorm:0.2.20
-
cpe:2.3:a:typeorm:typeorm:0.2.21
-
cpe:2.3:a:typeorm:typeorm:0.2.22
-
cpe:2.3:a:typeorm:typeorm:0.2.23
-
cpe:2.3:a:typeorm:typeorm:0.2.24
-
cpe:2.3:a:typeorm:typeorm:0.2.3
-
cpe:2.3:a:typeorm:typeorm:0.2.4
-
cpe:2.3:a:typeorm:typeorm:0.2.5
-
cpe:2.3:a:typeorm:typeorm:0.2.6
-
cpe:2.3:a:typeorm:typeorm:0.2.7
-
cpe:2.3:a:typeorm:typeorm:0.2.8
-
cpe:2.3:a:typeorm:typeorm:0.2.9