3 matches found
ROOT-APP-NPM-CVE-2020-28499 CVE-2020-28499 in @rootio/merge - Patched by Root
Root has patched CVE-2020-28499 in the @rootio/merge package for Root:npm. Multiple fixed versions available...
CVE-2020-28499
creationtimestamp| type| source ---|---|--- 2021-02-18 18:50:14+00:00| seen| Telegram/tIGC5un3HsV74L9roD0TFT0savOgDr90pY4C95txqUvRP0...
@amaspace-editor/builder (>=0.0.52 <=0.0.522), @instacart/eslint-config (=0.3.0) +13 more potentially affected by CVE-2020-28499 via merge (=2.1.0)
merge NPM version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on merge and may be impacted: - @amaspace-editor/builder =0.0.52, =1.4.2, =4.0.19, =1.0.21, =4.0.30, =1.0.34, =2.0.25, =3.0.17, =1.0.19, =4.0.21, =4.0.26 Source cves: CVE-2020-28499...