Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mixin\-Deep
(Mixin\-Deep_project)Repositories | https://github.com/jonschlinkert/mixin-deep |
#Vulnerabilities | 2 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-08-23 | CVE-2019-10746 | mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload. | Fedora, Mixin\-Deep, Communications_cloud_native_core_network_function_cloud_native_environment | 9.8 | ||
2018-06-07 | CVE-2018-3719 | mixin-deep node module before 1.3.1 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modification of an existing property that will exist on all objects. | Mixin\-Deep | 8.8 |