Skip to main content

Mixin Deep

2 CVEs product

Monthly

CVE-2019-10746 npm CRITICAL POC PATCH Act Now

mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Mixin Deep Fedora Communications Cloud Native Core Network Function Cloud Native Environment
NVD
CVSS 3.1
9.8
EPSS
3.5%
CVE-2018-3719 npm HIGH POC PATCH This Week

mixin-deep node module before 1.3.1 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability, which allows a malicious user to modify the prototype of "Object" via __proto__,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Mixin Deep
NVD GitHub
CVSS 3.1
8.8
EPSS
2.1%
EPSS 4% CVSS 9.8
CRITICAL POC PATCH Act Now

mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Mixin Deep Fedora +1
NVD
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

mixin-deep node module before 1.3.1 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability, which allows a malicious user to modify the prototype of "Object" via __proto__,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Mixin Deep
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy