CVE-2020-28281

Prototype Pollution in npm/set-object-value

Identifier

CVE-2020-28281

Package Slug

npm/set-object-value

Vulnerability

Prototype Pollution

Description

Prototype pollution vulnerability in 'set-object-value' allows an attacker to cause a denial of service and may lead to remote code execution.

Affected Versions

All versions starting from 0.0.0 before 0.0.5

Solution

Upgrade to version 0.0.5 or above.

Last Modified

2021-01-01

source