Async - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	1

Date	Id	Summary	Products	Score	Patch	Annotated
2022-04-06	CVE-2021-43138	In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileges via the mapValues() method, aka lib/internal/iterator.js createObjectIterator prototype pollution.	Async, Fedora	7.8