PT-2021-15467 · Swiper · Swiper

Peng@Shu)

+1

·

Published

2021-04-12

·

Updated

2021-05-10

·

CVE-2021-23370

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions swiper versions prior to 6.5.1
Description The issue affects the package swiper, making versions prior to 6.5.1 susceptible to prototype pollution.
Recommendations For versions prior to 6.5.1, update to version 6.5.1 or later to resolve the issue.

Exploit

Fix

Prototype Pollution

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-1321

Related Identifiers

CVE-2021-23370
GHSA-P3HC-FV2J-RP68
SNYK-JAVA-ORGWEBJARS-1244698
SNYK-JAVA-ORGWEBJARSBOWER-1244699
SNYK-JAVA-ORGWEBJARSBOWERGITHUBNOLIMITS4WEB-1244697
SNYK-JAVA-ORGWEBJARSNPM-1244696
SNYK-JS-SWIPER-1088062

Affected Products

Swiper