Known Vulnerabilities for Dot by Dot Project
Listed below are 2 of the newest known vulnerabilities associated with "Dot" by "Dot Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-8141 | The dot package v1.1.2 uses Function() to compile templates. This can be exploited by the attacker if they can control the gi... | 8.8 - HIGH | 2020-03-15 | 2020-03-17 |
| CVE-2020-7639 | eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modif... | 5.3 - MEDIUM | 2020-04-06 | 2022-12-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Dot Project | Dot | 2.0.0 | beta.0 | All | All |
| Application | Dot Project | Dot | 1.1.3 | All | All | All |
| Application | Dot Project | Dot | 1.1.2 | All | All | All |
| Application | Dot Project | Dot | 1.1.1 | All | All | All |
| Application | Dot Project | Dot | 1.1.0 | All | All | All |
| Application | Dot Project | Dot | 1.0.3 | All | All | All |
| Application | Dot Project | Dot | 1.0.1 | All | All | All |
| Application | Dot Project | Dot | 0.2.0 | All | All | All |