CVE-2020-36604

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-36604

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-36604.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-36604

Aliases

GHSA-c429-5p7v-vgjp

Downstream

DEBIAN-CVE-2020-36604

UBUNTU-CVE-2020-36604

Related

CGA-2wxw-3ggr-3v7x

Published

2022-09-23T06:15:08.943Z

Modified

2026-03-13T00:42:13.316740Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function.

References

Affected packages

Git / github.com/hapijs/hoek

Affected ranges

Type

GIT

Repo

https://github.com/hapijs/hoek

Events

Introduced

Fixed

5bd73f642b0e21a92fc582ad2b489301753d1e01

Introduced

04450279698565e2a9ebffe8b1c349539daa7924

Fixed

8bf7635550d35ff01966601c19078df8da9b96a6

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "8.5.1"
        },
        {
            "introduced": "9.0"
        },
        {
            "fixed": "9.0.3"
        }
    ]
}

Affected versions

v9.*

v9.0.0

v9.0.1

v9.0.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-36604.json"