CVE-2021-23402

Improperly Controlled Modification of Dynamically-Determined Object Attributes in npm/record-like-deep-assign

Identifier

CVE-2021-23402

Package Slug

npm/record-like-deep-assign

Vulnerability

Improperly Controlled Modification of Dynamically-Determined Object Attributes

Description

The record-like-deep-assign package is vulnerable to Prototype Pollution via the main functionality.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-07-08

source