{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T23:43:59.131","vulnerabilities":[{"cve":{"id":"CVE-2026-1774","sourceIdentifier":"cret@cert.org","published":"2026-02-10T16:16:10.740","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"CASL Ability, versions 2.4.0 through 6.7.4, contains a prototype pollution vulnerability."},{"lang":"es","value":"CASL Ability, versiones 2.4.0 a 6.7.4, contiene una vulnerabilidad de contaminación de prototipos."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"references":[{"url":"https://cwe.mitre.org/data/definitions/1321.html","source":"cret@cert.org"},{"url":"https://developer.mozilla.org/en-US/docs/Web/Security/Attacks/Prototype_pollution","source":"cret@cert.org"},{"url":"https://github.com/stalniy/casl/tree/master/packages/casl-ability","source":"cret@cert.org"},{"url":"https://www.kb.cert.org/vuls/id/458422","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}