Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2021-23373

Disclosure Date: July 25, 2022 (last updated February 24, 2025)
All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-21231

Disclosure Date: June 24, 2022 (last updated February 24, 2025)
All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. **Note:** This vulnerability derives from an incomplete fix of [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666)
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-28276

Disclosure Date: December 29, 2020 (last updated November 28, 2024)
Prototype pollution vulnerability in 'deep-set' versions 1.0.0 through 1.0.1 allows attacker to cause a denial of service and may lead to remote code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7715

Disclosure Date: September 01, 2020 (last updated February 22, 2025)
All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0