The package madlib-object-utils before 0.1.8 are vulnerable to Prototype Pollution via the setValue method, as it allows an attacker to merge object prototypes into it. Note: This vulnerability derives from an incomplete fix of...
7.5CVSS
8.5AI Score
0.001EPSS
9.8CVSS
7.8AI Score
0.005EPSS