CVE-2021-25952

Published July 7th, 2021

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

Prototype pollution vulnerability in ‘just-safe-set’ versions 1.0.0 through 2.2.1 allows an attacker to cause a denial of service and may lead to remote code execution.

angus-c/just

A library of dependency-free JavaScript utilities that do just one thing.

GitHub

6.21K