3 matches found
CVE-2021-40663
deep.assign npm package 0.0.0-alpha.0 is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...
CVE-2021-40663
CVE-2021-40663 concerns the npm package deep.assign version 0.0.0-alpha.0 , vulnerable to Prototype Pollution due to an improper validation of parameters in the underlying prototype modification mechanism. The issue is documented across multiple sources (NVD entry, Veracode, GHSA, OSV, PRION, CVE...
CVE-2021-40663
deep.assign npm package 0.0.0-alpha.0 is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...