CVEFinder.io

CVE-2020-8203

⚠️ high
🔍 Scan for this CVE
Summary

Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.

CVSS Score
7.4
High
EPSS Score
2.6
Exploit Probability
Published Date
2020-07-15
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 56.9% of all 335,187 vulnerabilities in our database.

#144,485
Above average severity
Severity Percentile
Last Modified 2024-11-21
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
CWE IDs (Weakness Types)

📦 Affected Products 42

🔗 References 8

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-46878 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
CVE-2026-46879 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
CVE-2026-46880 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
CVE-2026-46881 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
CVE-2026-46882 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
CVE-2026-46883 ⛔ critical 9.8 0.5 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure S... 2026-06-17
These CVEs affect the same products