CVE-2018-3750

Prototype Pollution in deep-extend

Description

Versions of deep-extend before 0.5.1 are vulnerable to prototype pollution.

Recommendation

Update to version 0.5.1 or later.

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

Severity

Ecosystem

JavaScript

Publish Date

October 8, 2018

Modified Date

November 7, 2023

Score Vector

Affected Versions