13 matches found
CVE-2022-24802
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
deepmerge-ts 安全漏洞
deepmerge-ts is an npm package. It is used to deep merge 2 or more objects with respect to type information. A security vulnerability exists in versions of deepmerge-ts prior to 2.0.2, which stems from the lack of handling of merge functions and is susceptible to prototype contamination...
Prototype Pollution
deepmerge-ts is vulnerable to prototype pollution. The vulnerability exists in the defaultMergeRecords function in deepmerge.ts which allows an attacker to inject and execute arbitrary code inside the system...
GHSA-R9W3-G83Q-M6HQ Prototype Pollution in deepmerge-ts
deepmerge-ts is used to merge 2 or more objects respecting type information. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. A fix was released in version 4.0.2. Currently, there is no known workaround...
@byndyusoft/dto-factory (=1.0.1), @chronicstone/mongoose-search (>=1.0.0 <=1.0.5) +14 more potentially affected by CVE-2022-24802 via deepmerge-ts (>=1.1.7 <=3.0.1)
deepmerge-ts NPM version =1.1.7, =1.0.0, =0.1.3, =1.6.0, =0.2.5, =3.19.0, =1.0.16, =0.1.0, =1.0.1, =1.0.10, =4.0.0, =0.1.0, =2.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2022-24802 Source advisory: OSV:GHSA-R9W3-G83Q-M6HQ...
Prototype Pollution in deepmerge-ts
deepmerge-ts is used to merge 2 or more objects respecting type information. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. A fix was released in version 4.0.2. Currently, there is no known workaround...
CVE-2022-24802
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
Design/Logic Flaw
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
CVE-2022-24802 Prototype Pollution in deepmerge-ts
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
CVE-2022-24802 Prototype Pollution in deepmerge-ts
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
CVE-2022-24802 Prototype Pollution in deepmerge-ts
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. This issue has been patched in version 4.0.2. There are no known workarounds for this issue...
CVE-2022-24802
CVE-2022-24802 affects the TypeScript library deepmerge-ts via prototype pollution in deepmerge.ts (defaultMergeRecords). The issue has been patched in version 4.0.2; remediation is to upgrade to 4.0.2 or later. The connected documents do not provide public exploit details or workarounds beyond t...
deepmerge-ts 安全漏洞
deepmerge-ts is an npm package. It is used to deep merge 2 or more objects with respect to type information. A security vulnerability exists in deepmerge-ts that stems from prototype contamination in the defaultMergeRecords function of the deepmerge.ts file...