CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-23373 – Prototype Pollution
https://notcve.org/view.php?id=CVE-2021-23373
All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality. Todas las versiones del paquete set-deep-prop son vulnerables a una Contaminación de Prototipos por medio de la función main • https://security.snyk.io/vuln/SNYK-JS-SETDEEPPROP-1083231 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-21231 – Prototype Pollution
https://notcve.org/view.php?id=CVE-2022-21231
All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. **Note:** This vulnerability derives from an incomplete fix of [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666) Todas las versiones del paquete deep-get-set son vulnerables a la Contaminación de Prototipos por medio de la función 'deep'. **Nota:** Esta vulnerabilidad deriva de una corrección incompleta de [CVE-2020-7715](https://security.snyk.io/vuln/SNYK-JS-DEEPGETSET-598666) • https://snyk.io/vuln/SNYK-JS-DEEPGETSET-2342655 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 2CVE-2020-28276
https://notcve.org/view.php?id=CVE-2020-28276
Prototype pollution vulnerability in 'deep-set' versions 1.0.0 through 1.0.1 allows attacker to cause a denial of service and may lead to remote code execution. Una vulnerabilidad de contaminación de prototipo en "deep-set" versiones 1.0.0 hasta 1.0.1, permite a un atacante causar una denegación de servicio y puede conllevar a una ejecución de código remota • https://github.com/klaemo/deep-set/blob/103d650b3de1f5c6cf051236347ba59e7274cd07/index.js#L39 https://www.whitesourcesoftware.com/vulnerability-database/CVE-2020-28276 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-7715 – Prototype Pollution
https://notcve.org/view.php?id=CVE-2020-7715
All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function. Todas las versiones del paquete deep-get-set, son vulnerables a una Contaminación de Prototipo por medio de la función main • https://snyk.io/vuln/SNYK-JS-DEEPGETSET-598666 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •