CVE-2021-23403

Improperly Controlled Modification of Dynamically-Determined Object Attributes in npm/ts-nodash

Identifier

CVE-2021-23403

Package Slug

npm/ts-nodash

Vulnerability

Improperly Controlled Modification of Dynamically-Determined Object Attributes

Description

All versions of package ts-nodash are vulnerable to Prototype Pollution via the Merge() function due to lack of validation input.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-07-08

source