CVE-2020-7748

Uncontrolled Resource Consumption in npm/@tsed/core

Identifiers

CVE-2020-7748

Package Slug

npm/@tsed/core

Vulnerability

Uncontrolled Resource Consumption

Description

This affects the package @tsed/core This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attacker can overwrite and pollute the object prototype of a program.

Affected Versions

All versions before 5.65.7

Solution

Upgrade to version 5.65.7 or above.

Last Modified

2020-10-23

source