CVE-2020-28271
Improper Input Validation in npm/deephas
Identifiers
CVE-2020-28271
Package Slug
npm/deephas
Vulnerability
Improper Input Validation
Description
Prototype pollution vulnerability in deephas may allow an attacker to cause a denial of service, or possibly lead to remote code execution.
Affected Versions
All versions starting from 1.0.0 up to 1.0.5
Solution
Upgrade to version 1.0.7 or above.
Last Modified
2020-11-26
| source |