Lucene search
+L

5 matches found

Circl
Circl
added 2021/12/10 10:25 p.m.8 views

CVE-2021-23700

creationtimestamp| type| source ---|---|--- 2021-12-10 22:25:23+00:00| seen| https://t.me/cibsecurity/33763...

9.8CVSS8.7AI score0.01171EPSS
Exploits1References1
NVD
NVD
added 2021/12/10 8:15 p.m.16 views

CVE-2021-23700

All versions of package merge-deep2 are vulnerable to Prototype Pollution via the mergeDeep function...

9.8CVSS0.01171EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/12/10 8:5 p.m.21 views

CVE-2021-23700 Prototype Pollution

All versions of package merge-deep2 are vulnerable to Prototype Pollution via the mergeDeep function...

6.5CVSS9.7AI score0.01171EPSS
Exploits1References1
CVE
CVE
added 2021/12/10 8:5 p.m.39 views

CVE-2021-23700

CVE-2021-23700 affects the npm package merge-deep2, with prototype pollution via the mergeDeep() function. All versions are vulnerable to injecting properties into Object.prototype through unsafe recursive merge or path-based property assignment, enabling potential DoS or remote code execution in...

9.8CVSS8AI score0.01171EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2021/10/03 1:34 p.m.6 views

react-here-map-interactive (>=0.0.1 <=0.9.2) potentially affected by CVE-2021-23700 via merge-deep2 (=3.0.6)

merge-deep2 NPM version =3.0.6 is affected by a known vulnerability. The following packages have a transitive dependency on merge-deep2 and may be impacted: - react-here-map-interactive =0.0.1, =0.9.2 Source cves: CVE-2021-23700 Source advisory: SNYK:JS-MERGEDEEP2-1727593...

9.8CVSS7.2AI score0.01171EPSS
Exploits1
Rows per page
Query Builder