cve
base
Search
Products
Trending
About
Docs
Pricing
Home
/
Products
/
debian
/
Debian Node-Async
Debian Node-Async vulnerabilities
1 known vulnerability affecting
debian/node-async
.
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
LOW
1
Vulnerabilities
Page 1 of 1
CVE-2021-43138
LOW
CVSS 7.8
2021
CVE-2021-43138 [HIGH] CVE-2021-43138: node-async - In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileg... In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileges via the mapValues() method, aka lib/internal/iterator.js createObjectIterator prototype pollution. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian