You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
���� ArangoDB is a native multi-model database with flexible data models for documents, graphs, and key-values. Build high performance applications using a convenient SQL-like query language or JavaScript extensions.
mend-for-github-combot
changed the title
CVE-2020-7608 (High) detected in arangodb-174dcc2a4bd5b87bec4f771b0a30a0665a2af54e
CVE-2020-7608 (Medium) detected in arangodb174dcc2a4bd5b87bec4f771b0a30a0665a2af54e
Oct 19, 2020
CVE-2020-7608 - Medium Severity Vulnerability
Vulnerable Library - arangodb174dcc2a4bd5b87bec4f771b0a30a0665a2af54e
���� ArangoDB is a native multi-model database with flexible data models for documents, graphs, and key-values. Build high performance applications using a convenient SQL-like query language or JavaScript extensions.
Library home page: https://github.com/arangodb/arangodb.git
Found in HEAD commit: 8e8ad4a0d7c8d3c10bab3b9336f097c4933f0904
Vulnerable Source Files (0)
Vulnerability Details
yargs-parser could be tricked into adding or modifying properties of Object.prototype using a "proto" payload.
Publish Date: 2020-03-16
URL: CVE-2020-7608
CVSS 3 Score Details (5.3)
Base Score Metrics:
Suggested Fix
Type: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7608
Release Date: 2020-03-16
Fix Resolution: v18.1.1;13.1.2;15.0.1
The text was updated successfully, but these errors were encountered: