Skip to main content

Deep Get Set

2 CVEs product

Monthly

CVE-2022-21231 npm CRITICAL POC Act Now

All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Deep Get Set
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2020-7715 npm CRITICAL POC PATCH Act Now

All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Deep Get Set
NVD
CVSS 3.1
9.8
EPSS
2.0%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

All versions of package deep-get-set are vulnerable to Prototype Pollution via the 'deep' function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Deep Get Set
NVD
EPSS 2% CVSS 9.8
CRITICAL POC PATCH Act Now

All versions of package deep-get-set are vulnerable to Prototype Pollution via the main function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Information Disclosure Deep Get Set
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy