Every CVE whose affected-product data names Dset Project Dset, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-28277 — CVSS 9.8 (critical): Prototype pollution vulnerability in 'dset' versions 1.0.0 through 2.0.1 allows attacker to cause a denial of service and may lead to…
CVE-2022-25645 — CVSS 6.5 (medium): All versions of package dset are vulnerable to Prototype Pollution via 'dset/merge' mode, as the dset function checks for prototype…