EPSS
Percentile
41.0%
Versions of default-deep before 0.2.4 are vulnerable to prototype pollution
default-deep
Update to version 0.2.4 or later.
github.com/advisories/GHSA-cqp5-m4pq-gfgp
github.com/jonschlinkert/defaults-deep/commit/c873f341327ad885ff4d0f23b3d3bca31b0343e5
hackerone.com/reports/310514
nvd.nist.gov/vuln/detail/CVE-2018-3723
www.npmjs.com/advisories/581