CNNVD-202601-4853 Information

CNNVD ID

CNNVD-202601-4853

Related CVE

CVE-2026-25047

• CNNVD Published: 2026-01-29

Description (Chinese)

deepHas是Paul Ryan个人开发者的一个软件库。 deepHas 1.0.7版本存在安全漏洞，该漏洞源于原型污染，可能导致攻击者修改全局对象行为。

Description (English)

Deephas is a software repository for Paul Ryan’s personal developer. There is a security loophole in version 1.0.7 of deephas, which originates from prototype contamination and may lead to modifications in the behaviour of the attackers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-29

Last Modified

2026-02-24

References

https://github.com/sharpred/deepHas/commit/8097fafd3776c613d8066546653e0d2c7b5fc465 https://github.com/sharpred/deepHas/security/advisories/GHSA-2733-6c58-pf27 https://access.redhat.com/security/cve/cve-2026-25047

Patch

https://github.com/sharpred/deepHas