Vulnerabilities > Typescript Deep Merge Project

DATE CVE VULNERABILITY TITLE RISK
2022-08-09 CVE-2022-25907 Unspecified vulnerability in Typescript Deep Merge Project Typescript Deep Merge
The package ts-deepmerge before 2.0.2 are vulnerable to Prototype Pollution due to missing sanitization of the merge function.
network
low complexity
typescript-deep-merge-project
critical
9.8