VYPR
Moderate severityNVD Advisory· Published Mar 11, 2020· Updated Aug 4, 2024

CVE-2020-7598

CVE-2020-7598

Description

minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
minimistnpm
< 0.2.10.2.1
minimistnpm
>= 1.0.0, < 1.2.31.2.3

Affected products

57

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.