Vulnerabilities > CVE-2022-24802 - Unspecified vulnerability in Deepmerge-Ts Project Deepmerge-Ts
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
deepmerge-ts is a typescript library providing functionality to deep merging of javascript objects. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords(). This issue has been patched in version 4.0.2. There are no known workarounds for this issue.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |