CVE-2022-21824
Last modified
CVE-2022-21824 is a high-severity vulnerability rated 8.2/10 on the CVSS scale. Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__". The prototype pollution has very limited control, in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js >= 12.22.9, >= 14.18.3, >= 16.13.2, and >= 17.3.1 use a null protoype for the object these properties are being assigned to.. EPSS estimates a 21.51% chance of exploitation in the next 30 days.
Description
Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__". The prototype pollution has very limited control, in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js >= 12.22.9, >= 14.18.3, >= 16.13.2, and >= 17.3.1 use a null protoype for the object these properties are being assigned to.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nodejs | Node.Js | >= 12.0.0, < 12.22.9 |
| Nodejs | Node.Js | >= 14.0.0, < 14.18.3 |
| Nodejs | Node.Js | >= 16.0.0, < 16.13.2 |
| Nodejs | Node.Js | >= 17.0.0, < 17.3.1 |
| Oracle | Mysql Cluster | <= 8.0.29 |
| Oracle | Mysql Connectors | <= 8.0.28 |
| Oracle | Mysql Enterprise Monitor | <= 8.0.29 |
| Oracle | Mysql Server | <= 8.0.29 |
| Oracle | Mysql Workbench | <= 8.0.28 |
| Oracle | Peoplesoft Enterprise Peopletools | 8.58 |
| Oracle | Peoplesoft Enterprise Peopletools | 8.59 |
| Debian | Debian Linux | 10.0 |
| Debian | Debian Linux | 11.0 |
| Netapp | Oncommand Insight | All versions |
| Netapp | Oncommand Workflow Automation | All versions |
| Netapp | Snapcenter | All versions |
References
- https://hackerone.com/reports/1431042Issue Tracking, Mitigation, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2022/10/msg00006.htmlMailing List, Third Party Advisory
- https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/Release Notes, Vendor Advisory
- https://security.netapp.com/advisory/ntap-20220325-0007/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20220729-0004/Third Party Advisory
- https://www.debian.org/security/2022/dsa-5170Third Party Advisory
- https://www.oracle.com/security-alerts/cpuapr2022.htmlPatch, Third Party Advisory
- https://www.oracle.com/security-alerts/cpujul2022.htmlThird Party Advisory
- https://hackerone.com/reports/1431042Issue Tracking, Mitigation, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2022/10/msg00006.htmlMailing List, Third Party Advisory
- https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/Release Notes, Vendor Advisory
- https://security.netapp.com/advisory/ntap-20220325-0007/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20220729-0004/Third Party Advisory
- https://www.debian.org/security/2022/dsa-5170Third Party Advisory
- https://www.oracle.com/security-alerts/cpuapr2022.htmlPatch, Third Party Advisory
- https://www.oracle.com/security-alerts/cpujul2022.htmlThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-21824?
How severe is CVE-2022-21824?
How do I fix CVE-2022-21824?
Are you affected by CVE-2022-21824?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST