npm package
extend2
pkg:npm/extend2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-23568 | — | < 1.0.1 | 1.0.1 | Jan 7, 2022 | The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge. |
- CVE-2021-23568Jan 7, 2022affected < 1.0.1fixed 1.0.1
The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.