CVE-2022-24802

Published
View on NVD ↗
CVSS v3
8.1
HIGH
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords(). This issue has been patched in version 4.0.2. There are no known workarounds for this issue.

RebeccaStevens/deepmerge-ts
RebeccaStevens/deepmerge-ts
Deeply merge 2 or more objects respecting type information.
GitHubGitHub
297