All versions of package comb are vulnerable to Prototype Pollution via the deepMerge() function.
References
Link | Resource |
---|---|
https://snyk.io/vuln/SNYK-JS-COMB-1730083 | Exploit Mitigation Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: snyk
Published: 2021-12-10T00:00:00
Updated: 2021-12-10T20:05:10
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23561
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-10T20:15:08.303
Modified: 2021-12-14T15:50:13.267
Link: CVE-2021-23561
JSON object: View
Redhat Information
No data.
CWE