CVE-2021-23440: Prototype Pollution
First published: Sun Sep 12 2021(Updated: )
A type confusion vulnerability can lead to a bypass of <a href="https://access.redhat.com/security/cve/CVE-2019-10747">CVE-2019-10747</a> when the user-provided keys used in the path parameter are arrays. External Reference: <a href="https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1584212">https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1584212</a>
Credit: report@snyk.io report@snyk.io
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Set-value Project Set-value | <2.0.1 | |
| Set-value Project Set-value | >=3.0.0<4.0.1 | |
| Oracle Communications Cloud Native Core Policy | =1.14.0 | |
| npm/set-value | >=3.0.0<3.0.3 | 3.0.3 |
| npm/set-value | >=4.0.0<4.0.1 | 4.0.1 |
| npm/set-value | <2.0.1 | 2.0.1 |
| nuget/set-value-nuget | <2.0.0 | 2.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2021-23440
- https://github.com/jonschlinkert/set-value/pull/33
- https://github.com/jonschlinkert/set-value/commit/7cf8073bb06bf0c15e08475f9f952823b4576452
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1584212
- https://snyk.io/vuln/SNYK-JS-SETVALUE-1540541
- https://www.huntr.dev/bounties/2eae1159-01de-4f82-a177-7478a408c4a2/
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://github.com/jonschlinkert/set-value/pull/33/commits/383b72d47c74a55ae8b6e231da548f9280a4296a
- https://github.com/jonschlinkert/set-value/commit/cb12f14955dde6e61829d70d1851bfea6a3c31ad
- https://github.com/jonschlinkert/set-value/commit/09c4b108fea3c0260008590053ff13da64913245
- https://github.com/advisories/GHSA-4jqc-8m5r-9rpr (Advisory)
- https://access.redhat.com/security/cve/CVE-2019-10747
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2004945
- https://access.redhat.com/errata/RHSA-2021:5038
- https://access.redhat.com/errata/RHSA-2022:6156
- https://bugzilla.redhat.com/show_bug.cgi?id=2004944
Frequently Asked Questions
What is CVE-2021-23440?
CVE-2021-23440 is a type confusion vulnerability in the set-value package before version 2.0.1 and between version 3.0.0 and 4.0.1.
How does CVE-2021-23440 affect the set-value package?
CVE-2021-23440 can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arrays.
What is the severity of CVE-2021-23440?
CVE-2021-23440 has a severity rating of 9.8, which is considered critical.
Which software is affected by CVE-2021-23440?
The set-value package versions before 2.0.1 and between 3.0.0 and 4.0.1 are affected by CVE-2021-23440, as well as Oracle Communications Cloud Native Core Policy version 1.14.0.
How can I fix CVE-2021-23440?
To fix CVE-2021-23440, update the set-value package to version 4.0.1 or apply the necessary security patches provided by the software vendor.
- collector/nvd-index
- collector/github-advisory-latest
- alias/GHSA-4jqc-8m5r-9rpr
- alias/CVE-2021-23440
- collector/nvd-cve
- collector/github-advisory
- agent/author
- agent/type
- agent/softwarecombine
- agent/remedy
- agent/weakness
- agent/references
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/set-value project
- canonical/set-value project set-value
- version/set-value project set-value/3.0.0
- vendor/oracle
- canonical/oracle communications cloud native core policy
- version/oracle communications cloud native core policy/1.14.0
- package-manager/npm
- package-manager/nuget
- package-manager/redhat