Security Advisory

CVE-2021-23574

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-24 20:00:18

Last updated 2024-09-16 20:16:46

Assigner snyk

State PUBLISHED

Description

All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn and the set functions. This is an incomplete fix of [CVE-2020-28442](https://snyk.io/vuln/SNYK-JS-JSDATA-1023655).

← Browse all CVEs View on cve.org ↗