npm package
deep-get-set
pkg:npm/deep-get-set
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-21231 | — | <= 1.1.1 | — | Jun 24, 2022 | All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. **Note:** This vulnerability derives from an incomplete fix of [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666) | ||
| CVE-2020-7715 | — | < 1.1.1 | 1.1.1 | Sep 1, 2020 | All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function. |
- CVE-2022-21231Jun 24, 2022affected <= 1.1.1
All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. **Note:** This vulnerability derives from an incomplete fix of [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666)
- CVE-2020-7715Sep 1, 2020affected < 1.1.1fixed 1.1.1
All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function.