CVE-2022-37602
9.8CRITICALPrototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js.
게시됨: 10/14/2022업데이트됨: 5/15/2025
설명
Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js.
AI 분석AI 기반
영향받는 제품
grunt-karma_projectgrunt-karma
4.0.1
참조
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L109ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L26ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/issues/311Issue TrackingThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L109ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/blob/45b925964f55870f375c6e670d9945b223c984f5/tasks/grunt-karma.js#L26ExploitThird Party Advisory
- https://github.com/karma-runner/grunt-karma/issues/311Issue TrackingThird Party Advisory