0.2.4

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-01	CVE-2018-16486	Injection vulnerability in Defaults-Deep Project Defaults-Deep A prototype pollution vulnerability was found in defaults-deep <=0.2.4 that would allow a malicious user to inject properties onto Object.prototype. network low complexity defaults-deep-project CWE-74	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.