Typescript Deep Merge Project: >> Typescript Deep Merge Security Vulnerabilities
The package ts-deepmerge before 2.0.2 are vulnerable to Prototype Pollution due to missing sanitization of the merge function.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-08-09