Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Vulnerability Management
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Description
The product receives input from an upstream component that specifies attributes that are to be initialized or updated in an object, but it does not properly control modifications of attributes of the object prototype.
Latest vulnerabilities for CWE-1321
Authenticated code execution via prototype pollution in Kibana
2025-04-08
Medium
Yes
Multiple vulnerabilities in HPE Unified OSS Console Assurance Monitoring (UOCAM)
2025-03-24
High
Yes
Multiple vulnerabilities in IBM Cloud Pak for AIOps
2025-03-21
Critical
Yes
Public exploit
Multiple vulnerabilities in IBM Cognos Dashboards on Cloud Pak for Data
2025-03-20
Critical
Yes
Prototype pollution in 75lb deep-merge
2025-03-20
Critical
Yes
IBM Storage Defender - Data Protect update for DOMPurify
2025-03-11
Medium
Yes
Authenticated code execution via prototype pollution in Kibana
2025-03-05
Medium
Yes
IBM watsonx Orchestrate Cartridge for IBM Cloud Pak for Data update for jsonata-js JSONata
2025-02-27
High
Yes
Multiple vulnerabilities in IBM QRadar Data Synchronization App
2025-02-26
High
Yes
Public exploit
Multiple vulnerabilities in Moodle
2025-02-18
High
Yes
References
Description of CWE-1321 on Mitre website