grpc/grpc-node on GitHub
gRPC for Node.js
CVE History
CVE | Published | CVSS v2 | CVSS v3 |
---|---|---|---|
CVE-2020-7768 | 9.8 CRITICAL | 5 MEDIUM | |
The package grpc before 1.24.4; the package @grpc/grpc-js before 1.1.8 are vulnerable to Prototype Pollution via loadPackageDefinition. |