CVE-2021-3645
Improperly Controlled Modification of Dynamically-Determined Object Attributes in npm/merge
Identifiers
CVE-2021-3645
Package Slug
npm/merge
Vulnerability
Improperly Controlled Modification of Dynamically-Determined Object Attributes
Description
merge is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Affected Versions
All versions before 1.0.2
Solution
Upgrade to version 1.1.0 or above.
Last Modified
2021-09-24
| source |