CVE-2020-8158: Dos vulnerability on Typeorm Typeorm

Vulnerability Details : CVE-2020-8158

CVE Name: CVE-2020-8158: Dos vulnerability on Typeorm Typeorm

Description: Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.

Publish date: 2020-09-18T21:15Z

Last Update: 2022-08-05T19:31Z

CVSS Scores & Vulnerability Types

CVSS Score	9.8
Confidentiality Impact	HIGH
Integrity Impact	HIGH
Availability Impact	HIGH
Actack Vector	NETWORK
Actack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Vulnerability Type(s)	Dos
CWE ID	1321

Products Affected By CVE-2020-8158

#	Vendor	Product	Vulnerable Versions
1	Typeorm	Typeorm	1

Detail of Verions Affected

#	Product Type	Vendor	Product	Version
1	Application	Typeorm	Typeorm	* Node.Js

References For CVE-2020-8158

Hyperlink	Resource
https://hackerone.com/reports/869574	Exploit, Patch, Third Party Advisory