How severe is CVE-2022-37621?

CVE-2022-37621 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-37621

Name: browserify-shim
Author: browserify-shim_project

9.8CRITICAL

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js.

Опубликовано: 10/28/2022Обновлено: 5/7/2025

Описание

Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the fullPath variable in resolve-shims.js.

ИИ-АнализНа базе ИИ

Затронутые продукты

browserify-shim_projectbrowserify-shim

3.8.15

Ссылки

https://github.com/thlorenz/browserify-shim/blob/464b32bbe142664cd9796059798f6c738ea3de8f/lib/resolve-shims.js#L158
Third Party Advisory
https://github.com/thlorenz/browserify-shim/blob/464b32bbe142664cd9796059798f6c738ea3de8f/lib/resolve-shims.js#L37
Third Party Advisory
https://github.com/thlorenz/browserify-shim/issues/247
Issue TrackingThird Party Advisory
https://github.com/thlorenz/browserify-shim/blob/464b32bbe142664cd9796059798f6c738ea3de8f/lib/resolve-shims.js#L158
Third Party Advisory
https://github.com/thlorenz/browserify-shim/blob/464b32bbe142664cd9796059798f6c738ea3de8f/lib/resolve-shims.js#L37
Third Party Advisory
https://github.com/thlorenz/browserify-shim/issues/247
Issue TrackingThird Party Advisory