H1-2043807 — Vulnetix

H1-2043807 PUBLISHED CVSS 6.699999809265137 MEDIUM

Policy-restricted modules can escalate to higher privileges by impersonating other modules in a policy list using module.constructor.createRequire()

Risk Scores

CVSS v3.1

6.699999809265137

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Timeline

Aug 11, 2023 CVE Published
Aug 11, 2023 PoC Published

References

Policy-restricted modules can escalate to higher privileges by impersonating other modules in a policy list using module.constructor.createRequire() advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›