Deep.assign Project Deep.assign — known CVE vulnerabilities
Every CVE whose affected-product data names Deep.assign Project Deep.assign, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2021-40663 — CVSS 9.8 (critical): deep.assign npm package 0.0.0-alpha.0 is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype…