The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2022-01-07T20:05:13.398458Z
Updated: 2024-09-16T17:54:22.698Z
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23568
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-10T14:10:17.043
Modified: 2022-01-13T19:58:24.690
Link: CVE-2021-23568
Redhat
No data.