Vulnerability Details : CVE-2020-8158


CVE Name: CVE-2020-8158: Dos vulnerability on Typeorm Typeorm
Description: Prototype pollution vulnerability in the TypeORM package < 0.2.25 may allow attackers to add or modify Object properties leading to further denial of service or SQL injection attacks.
Publish date: 2020-09-18T21:15Z
Last Update: 2022-08-05T19:31Z

CVSS Scores & Vulnerability Types


CVSS Score
Confidentiality ImpactHIGH
Integrity ImpactHIGH
Availability ImpactHIGH
Actack VectorNETWORK
Actack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Vulnerability Type(s)Dos
CWE ID1321

Products Affected By CVE-2020-8158


# Vendor Product Vulnerable Versions
1 Typeorm Typeorm 1

Detail of Verions Affected


# Product Type Vendor Product Version
1 Application Typeorm Typeorm * Node.Js

References For CVE-2020-8158


Hyperlink Resource
https://hackerone.com/reports/869574 Exploit, Patch, Third Party Advisory