CVE-2020-28267

Improper Input Validation in npm/@strikeentco/set

Identifiers

CVE-2020-28267

Package Slug

npm/@strikeentco/set

Vulnerability

Improper Input Validation

Description

A prototype pollution vulnerability in @strikeentco/set may allow an attacker to cause a denial of service, or possibly lead to remote code execution.

Affected Versions

Version 1.0.0

Solution

Upgrade to version 1.0.1 or above.

Last Modified

2020-11-26

source