npm package
ts-deepmerge
pkg:npm/ts-deepmerge
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-25907 | — | < 2.0.2 | 2.0.2 | Aug 9, 2022 | The package ts-deepmerge before 2.0.2 are vulnerable to Prototype Pollution due to missing sanitization of the merge function. |
- CVE-2022-25907Aug 9, 2022affected < 2.0.2fixed 2.0.2
The package ts-deepmerge before 2.0.2 are vulnerable to Prototype Pollution due to missing sanitization of the merge function.