2 matches found
CVE-2021-29491
The CVE-2021-29491 entry concerns the mixme package for Node.js. Affected version: 0.5.0 (and earlier) allows an attacker to add or alter object properties via proto /proto in mutate/merge, enabling prototype pollution and potential DoS. The issue is fixed in version 0.5.1; upgrading to 0.5.1 or ...
CVE-2021-29491
...