RubySec

Providing security resources for the Ruby community

CVE-2019-11358 (jquery-rails): Prototype pollution attack through jQuery $.extend

ADVISORIES

GEM

jquery-rails

FRAMEWORK

rails

SEVERITY

CVSS v3: 6.1

CVSS v2: 4.3

PATCHED VERSIONS

  • >= 4.3.4

DESCRIPTION

jQuery before 3.4.0 mishandles jQuery.extend(true, {}, …) because of bject.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype.