CVE-2020-8203

Object Prototype Pollution in npm/lodash

Identifiers

CVE-2020-8203

Package Slug

npm/lodash

Vulnerability

Object Prototype Pollution

Description

Prototype pollution attack when using _.zipObjectDeep in lodash.

Affected Versions

All versions before 4.17.20

Solution

Upgrade to version 4.17.20 or above.

Last Modified

2020-07-27

source