Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package lodahs, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2019-19771 — CVSS 8.8 (high): The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In…