Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-21414

Prisma is an open source ORM for Node.js & TypeScript. As of today, we are not aware of any Prisma users or external consumers of the `@prisma/sdk` package who are affected by this security vulnerability. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. It only affects the `getPackedPackage` function and this function is not advertised and only used for tests & building our CLI, no malicious code was found after checking our codebase.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.4%
CVSS Severity
CVSS v3 Score 7.7
CVSS v2 Score 6.5
Products affected by CVE-2021-21414
  • Prisma » Prisma » Version: N/A
    cpe:2.3:a:prisma:prisma:-
  • Prisma » Prisma » Version: 2.0.0
    cpe:2.3:a:prisma:prisma:2.0.0
  • Prisma » Prisma » Version: 2.0.1
    cpe:2.3:a:prisma:prisma:2.0.1
  • Prisma » Prisma » Version: 2.1.0
    cpe:2.3:a:prisma:prisma:2.1.0
  • Prisma » Prisma » Version: 2.1.1
    cpe:2.3:a:prisma:prisma:2.1.1
  • Prisma » Prisma » Version: 2.1.2
    cpe:2.3:a:prisma:prisma:2.1.2
  • Prisma » Prisma » Version: 2.1.3
    cpe:2.3:a:prisma:prisma:2.1.3
  • Prisma » Prisma » Version: 2.10.0
    cpe:2.3:a:prisma:prisma:2.10.0
  • Prisma » Prisma » Version: 2.10.1
    cpe:2.3:a:prisma:prisma:2.10.1
  • Prisma » Prisma » Version: 2.10.2
    cpe:2.3:a:prisma:prisma:2.10.2
  • Prisma » Prisma » Version: 2.11.0
    cpe:2.3:a:prisma:prisma:2.11.0
  • Prisma » Prisma » Version: 2.12.0
    cpe:2.3:a:prisma:prisma:2.12.0
  • Prisma » Prisma » Version: 2.12.1
    cpe:2.3:a:prisma:prisma:2.12.1
  • Prisma » Prisma » Version: 2.13.0
    cpe:2.3:a:prisma:prisma:2.13.0
  • Prisma » Prisma » Version: 2.13.1
    cpe:2.3:a:prisma:prisma:2.13.1
  • Prisma » Prisma » Version: 2.14.0
    cpe:2.3:a:prisma:prisma:2.14.0
  • Prisma » Prisma » Version: 2.15.0
    cpe:2.3:a:prisma:prisma:2.15.0
  • Prisma » Prisma » Version: 2.16.0
    cpe:2.3:a:prisma:prisma:2.16.0
  • Prisma » Prisma » Version: 2.16.1
    cpe:2.3:a:prisma:prisma:2.16.1
  • Prisma » Prisma » Version: 2.17.0
    cpe:2.3:a:prisma:prisma:2.17.0
  • Prisma » Prisma » Version: 2.18.0
    cpe:2.3:a:prisma:prisma:2.18.0
  • Prisma » Prisma » Version: 2.19.0
    cpe:2.3:a:prisma:prisma:2.19.0
  • Prisma » Prisma » Version: 2.2.0
    cpe:2.3:a:prisma:prisma:2.2.0
  • Prisma » Prisma » Version: 2.2.1
    cpe:2.3:a:prisma:prisma:2.2.1
  • Prisma » Prisma » Version: 2.2.2
    cpe:2.3:a:prisma:prisma:2.2.2
  • Prisma » Prisma » Version: 2.3.0
    cpe:2.3:a:prisma:prisma:2.3.0
  • Prisma » Prisma » Version: 2.4.0
    cpe:2.3:a:prisma:prisma:2.4.0
  • Prisma » Prisma » Version: 2.4.1
    cpe:2.3:a:prisma:prisma:2.4.1
  • Prisma » Prisma » Version: 2.5.0
    cpe:2.3:a:prisma:prisma:2.5.0
  • Prisma » Prisma » Version: 2.5.1
    cpe:2.3:a:prisma:prisma:2.5.1
  • Prisma » Prisma » Version: 2.6.0
    cpe:2.3:a:prisma:prisma:2.6.0
  • Prisma » Prisma » Version: 2.6.1
    cpe:2.3:a:prisma:prisma:2.6.1
  • Prisma » Prisma » Version: 2.6.2
    cpe:2.3:a:prisma:prisma:2.6.2
  • Prisma » Prisma » Version: 2.7.0
    cpe:2.3:a:prisma:prisma:2.7.0
  • Prisma » Prisma » Version: 2.7.1
    cpe:2.3:a:prisma:prisma:2.7.1
  • Prisma » Prisma » Version: 2.8.0
    cpe:2.3:a:prisma:prisma:2.8.0
  • Prisma » Prisma » Version: 2.8.1
    cpe:2.3:a:prisma:prisma:2.8.1
  • Prisma » Prisma » Version: 2.9.0
    cpe:2.3:a:prisma:prisma:2.9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved