PT-2021-15438 · Unknown · Nested-Object-Assign
Arjun Shibu
·
Published
2021-01-31
·
Updated
2023-08-08
·
CVE-2021-23329
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
nested-object-assign versions prior to 1.0.4
Description
The issue concerns Prototype Pollution via the default function.
Recommendations
For versions prior to 1.0.4, update to version 1.0.4 or later to resolve the issue.
Exploit
Fix
Prototype Pollution
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Nested-Object-Assign