Prototype poisoning in function mapObjIndexed in Ramda 0.27.0 and earlier allows attackers to compromise integrity or availability of application via supplying a crafted object (that contains an own property "proto ") as an argument to the function. NOTE: the vendor disputes this because the observ...
9.1CVSS
8.9AI Score
0.001EPSS