CVE-2020-7641— Prototype Pollution

CVSS 4.0 · Medium EPSS 0.05% · P15 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-7641

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Prototype Pollution

Source: NVD (National Vulnerability Database)

Vulnerability Description

This affects all versions of package grunt-util-property. The function call could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

grunt-util-property 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

grunt-util-property是mikaelkaron个人开发者的一个软件包。 grunt-util-property 存在安全漏洞，该漏洞源于容易受到原型污染，函数call可能会被诱骗使用__proto__有效负载添加或修改 Object.prototype 的属性。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	grunt-util-property	0 ~ unspecified	-

II. Public POCs for CVE-2020-7641

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-7641

请登录查看更多情报信息。

https://security.snyk.io/vuln/SNYK-JS-GRUNTUTILPROPERTY-565088x_refsource_MISC
https://github.com/mikaelkaron/grunt-util-property/blob/master/main.js%23L41x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-7641

Same Patch Batch · n/a · 2022-07-17 · 53 CVEs total

CVE-2022-27929		Pexip Infinity 输入验证错误漏洞
CVE-2022-33903		Tor 安全漏洞
CVE-2022-31213		dbus-broker 代码问题漏洞
CVE-2022-32320		Ferdi 跨站请求伪造漏洞
CVE-2022-30550		Dovecot 授权问题漏洞
CVE-2021-46784		Squid 资源管理错误漏洞
CVE-2020-16093		LemonLDAP::NG 信任管理问题漏洞
CVE-2022-31212		dbus-broker 缓冲区错误漏洞
CVE-2022-26657		Pexip Infinity 安全漏洞
CVE-2022-27928		Pexip Infinity 安全漏洞
CVE-2022-26656		Pexip Infinity 安全漏洞
CVE-2022-27930		Pexip Infinity 输入验证错误漏洞
CVE-2022-27931		Pexip Infinity 输入验证错误漏洞
CVE-2022-27932		Pexip Infinity 输入验证错误漏洞
CVE-2022-27933		Pexip Infinity 输入验证错误漏洞
CVE-2022-27934		Pexip Infinity 输入验证错误漏洞
CVE-2022-27935		Pexip Infinity 输入验证错误漏洞
CVE-2022-27936		Pexip Infinity 输入验证错误漏洞
CVE-2022-27937		Pexip Infinity 资源管理错误漏洞
CVE-2022-29286		Pexip Infinity 安全漏洞

Showing top 20 of 53 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2020-7641

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-7641— Prototype Pollution

I. Basic Information for CVE-2020-7641

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-7641

III. Intelligence Information for CVE-2020-7641

Same Patch Batch · n/a · 2022-07-17 · 53 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-7641

Leave a comment