-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security

Vulnerability Details

Registries

Custom Views

Weaknesses

Attack Patterns

Filters & Tools

dchester

Source -

NVD

BOS Name -

N/A

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

1

Related CVEs Related Products Related Assigners Reports

1Vulnerabilities found

Assigner-MITRE Corporation

Assigner-MITRE Corporation

CVSS Score-9.8||CRITICAL

EPSS-0.06% / 18.83%

||

7 Day CHG~0.00%

Published-28 Jan, 2026 | 00:00

Updated-09 Feb, 2026 | 19:06

Rejected-Not Available

Known To Be Used In Ransomware Campaigns?-Not Available

KEV Added-Not Available

KEV Action Due Date-Not Available

The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution.

Action-Not Available

Vendor-dchester n/a

Product-jsonpath n/a

CWE ID-CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')