0.004 Low
EPSS
Percentile
74.2%
The npm @cookiex/deep package before version 0.0.7 has a prototype pollution vulnerability. The global proto object can be polluted using the proto object.
github.com/tony-tsx/cookiex-deep
github.com/tony-tsx/cookiex-deep/commit/b5bea2b7f34a5fa9abb4446cbd038ecdbcd09c88
github.com/tony-tsx/cookiex-deep/issues/1
nvd.nist.gov/vuln/detail/CVE-2021-23442
snyk.io/vuln/SNYK-JS-COOKIEXDEEP-1582793