cb
cvebase
.
~
/
products
/
aurelia
/
path
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
aurelia
/
Aurelia Path
Aurelia Path vulnerabilities
1 known vulnerability affecting
aurelia/path
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2021-41097
P3
HIGH
CVSS 7.5
PoC
fixed in 1.1.7
2021-09-27
CVE-2021-41097 [HIGH] CWE-1321 CVE-2021-41097: aurelia-path is part of the Aurelia platform and contains utilities for path manipulation. There is aurelia-path is part of the Aurelia platform and contains utilities for path manipulation. There is a prototype pollution vulnerability in aurelia-path before version 1.1.7. The vulnerability exposes Aurelia application that uses `aurelia-path` package to parse a string. The majority of this will be Aurelia applications that employ the `aurelia-router
nvd
Aurelia Path vulnerabilities | cvebase