npm package
@75lb/deep-merge
pkg:npm/%4075lb/deep-merge
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-38986 | — | < 1.1.2 | 1.1.2 | Jul 30, 2024 | Prototype Pollution in 75lb deep-merge 1.1.1 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via merge methods of lodash to merge objects. |
- CVE-2024-38986Jul 30, 2024affected < 1.1.2fixed 1.1.2
Prototype Pollution in 75lb deep-merge 1.1.1 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via merge methods of lodash to merge objects.