4 matches found
CVE-2018-16487
creationtimestamp| type| source ---|---|--- 2026-04-08 08:13:40+00:00| seen| https://gist.github.com/gnsehfvlr/37529bab9e5164db2b92082b17f124cf 2026-05-20 15:46:13+00:00| seen| https://gist.github.com/steig/ddd6193b319e8b70af8f2659034a7922...
angular-rome (>=0.2.4 <=0.2.9), api-gate (>=0.0.8 <=0.0.14) +74 more potentially affected by CVE-2018-16487 +1 more via lodash._basemerge (>=2.0.0 <=2.4.1)
lodash.basemerge NPM version =2.0.0, =0.2.4, =0.0.8, =0.1.2, =0.5.0, =0.0.3, =0.0.2, =0.0.0, =0.1.3, =0.0.0, =0.0.1, =0.0.1, =0.0.1, =1.0.18, =1.1.16 and more Source cves: CVE-2018-16487, CVE-2018-3721 Source advisory: SNYK:JS-LODASHBASEMERGE-450200...
@maxts/waterline-adapter-tests (=1.0.3), driver-interface (=1.0.2) +9 more potentially affected by CVE-2018-16487 +1 more via @sailshq/lodash (=3.10.2)
@sailshq/lodash NPM version =3.10.2 is affected by a known vulnerability. The following packages have a transitive dependency on @sailshq/lodash and may be impacted: - @maxts/waterline-adapter-tests =1.0.3 - driver-interface =1.0.2 - machinepack-sockets =2.0.0, =5.2.0-0, =1.0.1, =0.9.1, =2.1.14,...
@c8y/ngx-components (=0.0.2-beta1), @nakedobjects/lib (>=10.0.0-beta.1 <=10.0.0-beta.4) +38 more potentially affected by CVE-2018-16487 +1 more via lodash-es (>=4.0.0 <=4.17.10)
lodash-es NPM version =4.0.0, =10.0.0-beta.1, =0.2.3, =0.1.0-alpha, =1.0.1, =0.2.0, =0.1.0, =6.13.2, =6.15.0, =6.15.1, =0.2.0, =2.0.0-alpha.1, =1.0.0-beta1, =1.0.0-beta5 and more Source cves: CVE-2018-16487, CVE-2018-3721 Source advisory: SNYK:JS-LODASHES-2434287...