CVE-2021-41097

Improperly Controlled Modification of Dynamically-Determined Object Attributes in npm/aurelia-path

Identifier

CVE-2021-41097

Package Slug

npm/aurelia-path

Vulnerability

Improperly Controlled Modification of Dynamically-Determined Object Attributes

Description

aurelia-path is part of the Aurelia platform and contains utilities for path manipulation. There is a prototype pollution vulnerability in aurelia-path.

Affected Versions

All versions before 1.1.7

Solution

Upgrade to version 1.1.7 or above.

Last Modified

2021-10-10

source